This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the Template say Corp Under email profile I have selected the Location as vsys shared is not checked in. When i go to log settings then system then under email I do not see email profile which i created If i change the email profile location to shared then under log settings, system i can see the email profile name. Need t...

MP18 by Cyber Elite
  • 2688 Views
  • 2 replies
  • 0 Likes

Resolved! DNS Proxy with vwire

Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that comes to mind is vwire layer 2, vlan with ip layer three probably will not work but I'm curiuos. Than...

icloud email receiving but not sending

I can see the traffic using smtp on port 587 but everything end tcp-fin. Tried turning off decryption to me.com. Traffic hit the rule that allows any traffic out for this particular user and they are also exempt already from decyrption. What should be the next troubleshooting step? Thanks

Resolved! Configuration changes not allowed on the passive Panorama--dynamic updates

Panorama M100 is in active and passive mode.Active PAnorama has latest app version.Each Panorama has separate connection to Internet for dynamic updates and they do not get syn. when on passive PA i click on download for app and threat version it gives error Configuration changes not allowed on the passive Panorama?

MP18 by Cyber Elite
  • 8253 Views
  • 3 replies
  • 0 Likes

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to. I have created 2 Security policies.The first policy = Internet Out allow any - Trusted Zone to Untrusted Zone with the default 'basic file blocking' Security profile.The second policy = Internet Out allow any - Trusted Zone with S...

catrock by L2 Linker
  • 3689 Views
  • 4 replies
  • 0 Likes

Resolved! Simple Explination of Share Levels

I have read all the documentation, and have a test environment for MineMeld, but I still cant work out what share levels are being used for.I was of the beleif that it was green=good (i.e. whitelist these) and red=bad (i.e. block these) however this doesnt seem to be the case in most the current prototypes.@lmori Said the following, but I am not...

Aggressive cleaning feature

Hi,I have a doubt regarding the aggressive disk cleaning feature introduced starting in PANOS 8.0.7. Details below.To enable aggressive cleaning:> debug software disk-usage aggressive-cleaning enableTo check if enabled (if enabled, this command will return output with True)> show system state | match aggressive-cleaningBut my doubt is, wha...

SSL_ERROR_NO_CYPHER_OVERLAP

All clients are intermittently seeing "SSL_ERROR_NO_CYPHER_OVERLAP" when browsing secure web pages. This began just about half an hour ago. Any Ideas?

Erro: Threat database Handler failed (Module: device) commit failed

Hi, i have to test the lab in eve-ng with palo alto 7.0.1 image and i can't commit to save the configuration as well as ip-address cannot set into this for management interface. Are we need to set the management ip address same EVE-ng ip address or same prefix range? How can i do the set ip address to reachability to internet? How can i fix thi...

IP error2.JPG
IP error.JPG
commit error.JPG

PA VM Interface Issue

Dear All, I setup test lab with vmware workstation. only ethernet1/1 interface is up. Others are down mode. I have attached screen also . Please advice me. Thanks,Lakshitha.

Resolved! expired dhcp leases PA-3020 8.0.7

Hi all,there is a dhcp server for a network with a lease time of 14 days. When I open the allocation, there are a lot of expired dhcp leases.Doesn't the firewall automatically delete them?

MPI-AE by L4 Transporter
  • 6120 Views
  • 6 replies
  • 0 Likes

Resolved! Terminal Server Agent on Windows Server 2008 R2 (service wont start)

Hi guys, I have installed TSA 7.0.6-4. as administrator on windows server 2008 R2 with remote desktop services installed. The TSA will not start (see screenshot) These are the logs from the TSA file menu. 10/21/16 15:31:02[Info 427]: TSA: Install driver succeeds!10/21/16 15:31:02[Info 519]: TSA: install service succeeds!10/21/16 15:31:02[Info 3...

Screenshot 2016-10-21 15.41.33.png

Where to mine all O365 endpoints?

Hi dear community, I just implemented MineMeld server and configured EDLs and test policies. For the MineMeld I used "o365-api-any-any.txt" from https://paloaltonetworks.app.box.com/s/ywkh7rc2rj0kyl0qetr6m6ag3akxvvx6/folder/51988433336. Does anybody know if it's enough for all O365 endpoints, or I'm missing something? i still see that some endpo...

Resolved! Disk usage for / exceeds limit, 99 percent in use, cleaning filesystem

Hi Guys, We have a setup where our main front end Firewall is a PA2020 with PA200 setup to IPSEC tunnel into it to add remote branches onto our network. All of the PA200's are on 7.0.1 and I have noticed that they all seem to be suffereing from the Disk usage for / exceeds limit, 99 percent in use, cleaning filesystem. The only posts I can see ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks