This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

Resolved! revert configuration automatically

I had a situation where checking log at start session box in a security policy while troubleshooting, after 2 minutes to commit changes, I lost comunication with the fw, because data plane get 100%. I would like to know if there is a commit revert command that, revert to the previous configuration in a time schedule. for example a commit that af...

Marivi by L2 Linker
  • 4368 Views
  • 1 replies
  • 0 Likes

useful custom reports

Hey all,I want to create some custom reports to get more useful information about what is going on in my network.I would like to know - just informational - which reports do you use in your daily business?Respectively which reports you consider as useful.Until now, I created one report that shows me the denied packets for every last week.Can you...

MPI-AE by L4 Transporter
  • 11827 Views
  • 21 replies
  • 0 Likes

Where is the BPA tool located??

I want to run BPA reports against my configs but I can't find the tool anywhere??? I know it exists as I have a Initial Analysis from our 3rd party supplier, but I would prefere to cut them out of the loop. Any ideas? Cheers Rob

Resolved! Getting Started with Best Practices Templates

Hi 2 all I am trying to create best practice for Vulnerability Protection and Anti-Spyware Profile with extended packet capture as desribed inhttps://www.paloaltonetworks.com/documentation/81/best-practices/best-practices-internet-gateway/best-practice-internet-gateway-security-policy/create-best-practice-security-profiles But i received warning...

aaobuhov by L2 Linker
  • 4357 Views
  • 3 replies
  • 0 Likes

Resolved! /opt/panrepo

Hello,someone know for What is used this partition? /opt/panrepo

Marivi by L2 Linker
  • 9359 Views
  • 2 replies
  • 0 Likes

PVLAN with Palo Alto?

I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation. Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN. I've got some Nexus9K switches with Layer 3 licensing in HA and had originally thought to use them as the gateway for the DC networks. Now though I'm wonderin...

jsalmans by L4 Transporter
  • 7733 Views
  • 5 replies
  • 0 Likes

Resolved! IKE v2 ASA vs. PA

Hi together, at the beginning of this week I ran into the following challenge. I’ve to setup an IKE v2 Tunnel between a Cisco ASA and a PA-850 running on 8.0.12.During the configuration the Cisco Partner send me the local and remote tunnel pre-shared key.After a few seconds of confusion, we started a funny discussion and 30 minutes of try and er...

Resolved! PAN-OS 8.1 User-ID problems

Hi there,I have some problems with a user-id installation on PAN-OS 8.1.4, scenario:1) Windows AD Domain Forest, with around 6/7 domains2) I'm only interested in authenticating users from one of the domains in the forest3) I've correctly connected the firewall to the local domain controllers and pulled out ip to user mapping4) I've also correctl...

Is the PA-220 compatible with newer firmware versions. Like 8.0 and 8.1

So we have several PA-200 in production and need to upgrade to 8.0. I was talking to a Palo Alto technician and he was telling me that the PA-200 are too old and not enough resources to handle the newer firmware and to upgrade. Do the PA-220 have enough power. I am assuming so since they are the newer version. Also, can they handle the workload...

Strangeness with EDL - for Office 365

Hi I have minemeld mining O365 address for my PA's. Moved to the new API as well. I have a hybrid Exchange setup.I have moved some mailboxes up to the cloudWhat I have found recently is mail stops flowing I have a rule that basically say MS Public IPv4 to my beachhead port 25 smtp O365 attempts to talk to me and gets blocked.I check the src ad...

Resolved! DNS proxy not accepting tcp connections

Hi so my setup 5220vlan 20 ... my named dns server 10.43.20.100 and 10.43.20.102 ... dns1 and dns2on the pa on interface with vlan 20 10.43.20.1 I have configured dns proxy. works well for dns via udp but tcp doesn't workso tcpdump -pni eth0 host 10.43.20.1 and port 53 -c 20 & dig @10.43.20.1 _ldap._tcp.abcde.com SRV[1] 25943;; Truncated, re...

Passive Panorma - Shows Commit failed for few managed devices

We have M100 in active and Passive mode. On Active Panorma under managed devices I see commit succeded for all firewalls when i log into passive panorama it shows commit failed for few firewalls - template and shared policy? How can i fix the commit failed on passive M100?

MP18 by Cyber Elite
  • 1652 Views
  • 1 replies
  • 0 Likes

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the Template say Corp Under email profile I have selected the Location as vsys shared is not checked in. When i go to log settings then system then under email I do not see email profile which i created If i change the email profile location to shared then under log settings, system i can see the email profile name. Need t...

MP18 by Cyber Elite
  • 2686 Views
  • 2 replies
  • 0 Likes

Resolved! DNS Proxy with vwire

Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that comes to mind is vwire layer 2, vlan with ip layer three probably will not work but I'm curiuos. Than...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks