This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

Updating MineMeld

Hi Guys I am running 0.9.48 and want to get to 0.9.50+ to utilise the latest Office365 feeds. I have checked the old method and I don't have the auto update utility installed /usr/sbin/minemeld-auto-update If it try this method as suggested sudo add-apt-repository -ry ppa:adiscon/v8-stable $ wget -qO - https://minemeld-updates.panw.io/gpg....

Custom search filters for Anomali

Hello, Is it possible to configure the Anomali miner to allow for custom queries? For example, in threatstream, I like to search for the following string in Analyze -> Observables. How can I configure the anomali.opticAPI miner to allow for this? ((type=ip and confidence >= 60 and itype!=scan_ip) or (type=url and confidence>=78 and sev...

otlaP5 by L0 Member
  • 3459 Views
  • 1 replies
  • 0 Likes

Minemeld installation errors on ubuntu 16.04

Hi, I'm trying to setup a new installation of Minemeld using the cloud installer and am seeing the following errors. it appears the Minemeld install never completes. I'm not well versed in ubuntu so any help is appreciated. The following packages will be upgraded: libestr0 rsyslog2 upgraded, 87 newly installed, 0 to remove and 4 not upgraded...

neuadmin by L1 Bithead
  • 18989 Views
  • 19 replies
  • 0 Likes

Failover Link Monitoring too long

Hello guys, I have 2 plao alto configured with HA Active/passive mode. On both firewall, I configured link monitoring on link group with ethernet 1/11 and ethernet1/13 that are aggregated on Ae1 with condition "ALL". Those interfaces are plugged to a switch with LACP configuration and this switch is plugged to the Intrernet Router. The objective...

Resolved! Hardware for Panorama VM

Do I need a full vSphere management suite for Panaorama VM deployement or whether I can get away with a free version of eSXi?

Resolved! blocking netflix application instead of url

currently i am blocking al the urls to netflix. so when user access the website they get message blocked due to url on cli i see PA has to do some processing in order to block the url .if i block the application netflix instead of url that will redice the cpu processing on the PA right?

MP18 by Cyber Elite
  • 4407 Views
  • 2 replies
  • 0 Likes

Resolved! Planning virtual deployment into cluster

I have a Hyper-V cluster that spans 4 hosts that I want to protect with a pair of PA VMs. My question is do I need a pair of PAs for each host or do I add these two into my existing cluster and make the trusted interface on my existing vswitch and untrusted interface the physical vmlan interface used by my hypervisors? If anyone has deployed a P...

All hallows eve is on our doorstep, time for some poetry

As it's becoming a yearly tradition, I'm challenging all of you to come up with something funny Last year we did pictures, this year we're going to have a go at Haikus! We'll be selecting a (or more ?!?!) winner(s) who will not only receive eternal glory in the hall of spooky fame, but will also receive some great 'loot' from our sarcophagus! ...

jack-o-lantern-badge-18[2].png
reaper by Cyber Elite
  • 2214 Views
  • 1 replies
  • 4 Likes

Resolved! HA for interface pair as a DHCP client

I have a pair of VM-50 as an HA pair. When the primary firewall fails the IP is moved to the new active node but the MAC address changes and the ISP cable modem most likely does not accept this. The only resolution is to release and renew the DHCP address which is obvisouly not a workable solution for an automatic failover. Any ideas?

aarato by L1 Bithead
  • 4663 Views
  • 3 replies
  • 0 Likes

syn without window-scale option

Hi community, i am trying to access a website from LAN side of palo alto, even though correct policy is configured, tcp handshake was not complete. after packet capture i am able to find below points client sending syn packetbut i am not able to get syn-ack packet from server,able to see one ack packets from serverserver is using 3-way handshake...

Passive node strange behaviour matching rules

Hi, We have a cluster in PanOS 8.1.2. Suddenly we were reported that several users didnt work properly. We went to the active node and saw this: In order to solve quickly we decide to do a failover. After that i worked properly. So we would like to know why in a node the behaviour is strange. So PA is applying rule wrongly. Its applying the rule...

rule.jpg
setrule.jpg
BigPalo by L4 Transporter
  • 2136 Views
  • 2 replies
  • 0 Likes

Global Protect not working after upgrade

Hi I have upgraded my passive palo alto firewall to 7.1.20 post which global protect portal is not working. I'm seeing SSL session cache request comming in from external source. But the webpage page cannot load after adding the exception. Same works good in primary firewall 7.0.9 7.0.9 to 7.1.0 to 7.1.20 is the upgrade path that I went. Whenever...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks