General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 396 Views
  • 0 replies
  • 0 Likes

Stats dumps api period time

Does anyone know if there is a way to export the stats dumps with API, with a periid time 30 days? 

I tried in this way:

"/api/?type=export&category=stats-dump&starttime=2024/04/01@00:00:00&endtime=2024/04/30@00:00:00&key="
but retrive the ionly 7-l
...

setting up multiple internet connections

Translator
 
 
 
 

 

Translator
 
 
 
 

Hi everyone. I have a PA-220 firewall. It is currently connected via interface 1/8 to an internet connection that I will soon have to discontinue, and which I will call GW1 here.
At the same time I

...

gnesper by L2 Linker
  • 3012 Views
  • 14 replies
  • 0 Likes

No logs in the monitor > traffic tab?

Hello All,


1.) I have just installed Palo Alto 7.1 in Eve-NG, and  made two interfaces as Vwire with zone Trust and Untrust.

2.) I am able to access access everthing (e.g. internet, ping, etc.) hence policies are working fine  as I have created a polic

...

no logs.png

Update Panorama

Did not found any email to write Palo alto PAN-OS developers that hence writing here on feedback on palo alto Panorama update.

 

After finishing update panorama then against the version we update it gives option of "Re-Install" by clicking on that it

...

Resolved! Port forwarding through ipsec tunnel

Hello,

 

I have two Pa-440's.  One 440 has a public static ip and the other is just dhcp as of right now.     I do a site to site to site vpn working between them.  

 

I setup an original port forward on the public  static ip device to a local host a

...

IPSec IKEv2 multiple events per second

Hello everyone,

 

I see many events per second for a site-to-site IPSec tunnel and am unsure if it's normal. The below events have a severity level of informational but go over and over in a second.

My question is, is it normal? if not, where should

...

BGP Advertising prefix to same AS it was learned from.

I'm working on a VRF-centric DC model that utilizes a PA as the firewall platform between VRFs. One of the snags I'm hitting is that if a route is learned from R1 on an AS (say 65001), and is advertised via eBGP to the PA (AS 65002), the PA won't eve

...

Tyler_C by L1 Bithead
  • 14511 Views
  • 15 replies
  • 0 Likes

Unnown-TCP application "commvault"

Hi Guys, 

 

I hope you guys can help with classifying unknown traffic. 

 

I have read many forums for this topic none of which answer my specific question. I understand that should create a custom app if your application bespoke and it is unlikely that a

...

Deny any any ruleset

So if you accidentally put the any any and deny ruleset at the top of the panorama firewall and it wont let you in through the web interface. How would we be able to get into the panorama to change it back to the previous configurations??

User id integration cisco ISE

hi i did User id integration cisco ISE using syslog field identifier as article http://k12itdir.blogspot.com/2016/02/paloalto-user-id-from-cisco-ise-nodes.html?m=1 and its working fine . Problem its just send user name without domain and since i have

...

mhmameen by L1 Bithead
  • 1701 Views
  • 2 replies
  • 1 Likes

Resolved! Using the REST API to create a bunch of Address Objects

I have to create a large number Address Objects and would like to use teh REST API to do so.  I've seen a number of examples at adding various things, but I'm running into an issue with these specific shared objects.  The all live in a device group c

...

DaveFitz by L0 Member
  • 2417 Views
  • 1 replies
  • 0 Likes

TUNNEL STATUS RED AWS PAN TO ONPREM PAN

Hi Guys,

 

Need your help, as I cannot figured out what's wrong with my configuration. Both side of my Phase 1 are working fine but when it comes to Phase 2 connection is not complete. Any idea how to fix this issue?

 

Here is my AWS PAN configurati

...

MCipriano_0-1714708155306.png
MCipriano_1-1714708264907.png
MCipriano_2-1714708425551.png

Resolved! What does the configd process do for PAN-OS?

I'm documenting new services in PAN-OS present in 10.x. What does the configd process do? It appears to bind to udp/28879 (if only accessible "internally"). I do not see this service described in the Commonly Used Processes/Daemons url found here: 

h

...

jasonroy by L2 Linker
  • 2918 Views
  • 3 replies
  • 1 Likes
  • 23842 Posts
  • 112 Subscriptions
Labels