This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4108 Views
  • 0 replies
  • 0 Likes

Resolved! What are you using to implement SNMPv3?

I'm taking on the task of setting up SNMPv3 on a firewall but will be starting from scratch with no tools, programs, scripts, etc. in place so I have a lot of flexibility (and also a lot of work ahead). I won't be doing traps but mostly looking at CPU and interface traffic. I would like to know what programs, etc. others are using so I can get a...

Can we create same VLAN ID on two different aggregate interface on the same vsys enabled device ?

Hello All, I want to assgin same vlan id two different aggregate interface which will be assign to different vsys created on the 5220 device and assgin public IP address as well which are in same subnet. The exact requirement is below :- created two vsys :- Internet1 and Internet 2 Internet 1 vsys has ae1 aggregate interface assigned with subin...

Email Alert Formatting - PanOS 8.0

I'm looking to make my email alerts more readable, especially for certain cases where rapid response is key. I have log forwarding configured and all, but the defaults contain way too much information. If possible I'd like to add some custom verbage, and use variables for the data I actually need, while disabling the rest. Could anyone point me...

magates by L2 Linker
  • 2847 Views
  • 1 replies
  • 0 Likes

Adding additional public IP range

Hi all - I've been having a bit of trouble getting this to work - I've done it on Cisco & Sonicwall boxes before, but this is my first PA 3020. We were just assigned additional public IP addresses by our ISP. The existing block is 206.x.x.x/29 and the new block is 165.x.x.x/29, so they're note contiguous. I went into the Ethernet Interface...

bwade by L0 Member
  • 5377 Views
  • 3 replies
  • 0 Likes

Resolved! OS partition

Is there anyway to freeup space on the partition were the OS resides on the PA or is that automagically done when you upgrade the os. All articles dealing with clean up of the disk space has mainly to do with purging logs, the image repository, the configuration but not really the OS.

jdprovine by L4 Transporter
  • 4114 Views
  • 3 replies
  • 0 Likes

Security policy rule - allowing a specific host access to ftp.sophos.com

Hello, A colleague needs to access ftp.sophos.com (195.171.192.29) using Filezilla as their SFTP client, via TCP port 990. I set up the security policy rule as follows: They could not log onto the ftp.sophos.com site. The password credentials they used are correct. Is the rule set up correctly? On a Cisco ASA I would have used the following A...

Source.PNG
Destination.PNG
Service.PNG
Actions.PNG
rchung54 by L2 Linker
  • 14003 Views
  • 18 replies
  • 0 Likes

Resolved! Using Minemeld for URL EDL

Dear MM comunity, I am trying to use MM for parsing a URL list to populate a PA NGFW which lacks Url filtering license. I have found that predefined miner urlhaus.URL which seems very well done. It is based on https://urlhaus.abuse.ch/ , which is free of charge. I have cloned it, then cloned a URL aggregator and a URL Output. I used the fo...

wdoria by L0 Member
  • 12591 Views
  • 4 replies
  • 0 Likes

Resolved! Device maximum ospf peers

hi guys is there a document that list the maximum OSPF peers and OSPF Areas for PA5220(per device is better) since ther might be a hardware or software limit on it for stability purposes. Thanks

toskie by L1 Bithead
  • 3714 Views
  • 1 replies
  • 0 Likes

Does "pre-logon" user belongs to "known" user?

Dear Comm, I was googleing alot about this topic and but only found this: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClXlCAK My specific question is, if a the User ID agent show the username "pre-logon" learned via "GP" - does this "user" counts to the "gruoup" of "known"-user which I can use in security policies? ...

Rboehme by L2 Linker
  • 4836 Views
  • 1 replies
  • 0 Likes

Downgrade Pan OS

Does the debug svm revert still work on the 8 os? https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClcYCAS

jdprovine by L4 Transporter
  • 8821 Views
  • 8 replies
  • 0 Likes

Odd NAT issue...

Had a very odd issue yesterday, I created two new Bi-Directional nat rules [seperate NAT IP's] to the outside world, one worked fine the other did not... One server could not get to the outside world..The NAT matched [OK],The Security Rule Matched [OK], Searched the configs [and old ones] for any possible clash with the NAT IP "X.X.X.115", Nothi...

nat1.jpg
nat2.jpg
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks