This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 777 Views
  • 0 replies
  • 0 Likes

Resolved! downgrade from 8.1.3 to 7.1.16

I am trying to develop an upgrade path from 7.1.16 to 8.1.3 and i have a test PA220 that I am working with. I don't want to have to to a factory reset to my test firewall but so far it has allowed me to upload a 7.1.16 image, but they when i try to i

...

jdprovine by L4 Transporter
  • 1988 Views
  • 2 replies
  • 0 Likes

Resolved! Site / urls you don't want to decrypt

Hi

 

I have a set of decrypt rules

 

1 to no decrypt based on 

src address

or 

dst address

or 

url - the usl is from custom objects / url category where I add in url's lile *.lync.com

 

then i do my decrypt line so the above gets hit first and then the decrypt

 

...

ssl decryption and temp cert management

Hi

 

I ran into an issue with the decryption cert being provide by my PA it had expired.

 

it was 30 days in. I believe this is an issue with the date time comparision and timezones as it has fixed itself today.

 

How do i find / look at these temp certs v

...

Dynamic update error " Failed to upload image..."

While trying to push dynamic updates from Panorama to managed devices it is failing for some of the devices(PA-200)

It gives an error " Failed to load image.."

We have checked the licenses of the devices for which dynamic updates are failing and found

...

tac.in by L3 Networker
  • 6352 Views
  • 3 replies
  • 0 Likes

Rest API for CPU utilization

Hello, 

 

I'm trying to create a Rest API URL to check the CPU utilization on my management and data planes and create a report to monitor over time. Using commands like show running resource-monitor did not give me exactly what I was looking for. I us

...

ha sync issues

I am have trouble with intermittent synch failures between my primary and passive firewalls. I am currently at OS7.1.16 and TAC told me that to fix my sync issues I need to upgrade to 8, Any thoughts on this

jdprovine by L4 Transporter
  • 4710 Views
  • 11 replies
  • 0 Likes

Resolved! Vsys + Failover config (Urgent!)

 Hi,

I am very new to PaloAlto and currently trying to figure out the following:

 

1. is HA or Failover VSYS specific? 

2. if so, how do I find failover/HA config per vsys?

3. How do I setup failover/HA per vsys?

 

the appliance i am using is PA-3020 softwa

...

qasim02 by L2 Linker
  • 6178 Views
  • 7 replies
  • 0 Likes

Panorama zero window size

Hi, we have an HA pair of M-100 Panoramas which were running fine until we attempted to upgrade the memory to 32GB to be able to run version 8.1.3. The passive Panorama went fine but the active would not boot after the memory was upped so a replaceme

...

Martfalc by L0 Member
  • 3385 Views
  • 2 replies
  • 0 Likes

tcp out of order

I am trying to diagnose why I am unable to access some server via ssh and the VPN. I have done a packet trace and the results were concerning tcp out of order and retransmission. So what is the best way to find out why?

jdprovine by L4 Transporter
  • 13532 Views
  • 7 replies
  • 0 Likes

WildFire file size limits

I'm trying to figure out whether our file size limits for WildFire are set appropriately. I have been unable to find a good way to determine whether there are files that aren't being uploaded due to their size. Would that show up in our logs? I've al

...

Resolved! Get vulnerability description and signature

How do I get the signature on what a Vulnerability has triggered?

I can only see the Threat Name and its ID in Panorama and look up the ID in the Customer Portal.

But there does not stand what combination or findings actually lead to this attack. Where

...

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL.

 

https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist

 

 

Every few months i got notified to comunication with one of

...

image.png
image.png
raji_toor by L4 Transporter
  • 4907 Views
  • 2 replies
  • 0 Likes
  • 23986 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks