General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 496 Views
  • 0 replies
  • 0 Likes

Panorama configuration is over 80MB

I am getting the following system log message on my Panorama dashboard:

 

The current configuration is 81MB, which exceeds the supported limit of 80MB.  We highly recommend that you reduce the configuration size to within 80MB. 

 

What are the potential

...

Resolved! url database - learning new urls from cloud

 

when new websites comes up  we see that it is under unknown category

 

one option is to ask PA to re category that.

 

in some cases we see that after few days that websites is not under known category and is reachable.

 

How does PA cloud database keeps t

...

MP18 by Cyber Elite
  • 3242 Views
  • 6 replies
  • 0 Likes

Palo Alto behind ReverseProxy, how block real IP ?

Hello,

I have many website behind my Palo Alto.

In front of many websites (and then Palo Alto), I have Reverse Proxy.

Into traffic logs I see Reverse proxy IP, not the real visitor IP.

 

I have enabled "Use X-Forwarded-For" and now I see Real IP into colu

...

Resolved! config push from panorama to HA PA

 

New configuration  is pushed from Panorama to a pair of firewalls that are configured as an active/passive HA pair.

will both PA active and passive syn theconfig ?

 

 

MP18 by Cyber Elite
  • 10430 Views
  • 2 replies
  • 0 Likes

Pre-Logon Machine Certificate placement

When doing pre-logon with machine certificate, where does the certificate need to be placed? Documentation says to put it into computer>personal, but i am unable to do this via GPO directly. Can it be placed into any of the other stores?

welly_59 by L3 Networker
  • 1983 Views
  • 1 replies
  • 0 Likes

Switch Redundancy at Access Layer

This is a bit off topic, but I thought some folks might have some knowledge and wisdom to offer. 

 

Where I work we're working dilligently to provide robust resiliency and redundancy for our firewalls using dual powersupplies, HA, and multiple ISP circ

...

locampo by L2 Linker
  • 9204 Views
  • 12 replies
  • 0 Likes

Problems with SIP

Hello

We have 3CX server - IP telephony inside the network.When we pass the SIP traffic through PA it gets problems

We try to connect through SIP :5060 port o outside server on ISP side but it doesnt work

we made application override and also disabled A

...

Radmin_85 by L4 Transporter
  • 2659 Views
  • 2 replies
  • 0 Likes

User-ID agent and SSL Error

I have been getting a ton of email alerts with issues with user-id agent and ssl connection errors even though the status is "green" showing "connected." I have verified the cert is valid and it is a self signed cert valid until Feb 2019. I have perf

...

Resolved! application dns and action reset both

 

need to understand deeply reset both action by PA for dns query in threat logs

I know PA send the tcp fin to both ends.

 

But client who is doing dns query if it does not get reply what does it shows there ?

does the client again makes query?

 

or does PA

...

MP18 by Cyber Elite
  • 6543 Views
  • 11 replies
  • 0 Likes

Resolved! suspend active panorama when passive panorama is rebooting

 

If passive panorama is going through reboot.

 

Active Panorama  shows passive panorama as unknown   

 

what will happen if i suspend the active Panorama ?

 

will all the firewalls connected to the Active panorama will get disconnected?

MP18 by Cyber Elite
  • 3515 Views
  • 6 replies
  • 0 Likes

Resolved! Source Users and Source Users Reported as "None" By FW

Hello,

I'm on version 8.1.2,  in ACC tab I do have a User Activity "widget" or pane that shows Source User, Destination User, Bytes, Sessions, Threats, Content, URLs and Apps. Always the Source User, presents "None" for Source User and also I see "Non

...

  • 24091 Posts
  • 116 Subscriptions
Labels