This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! logical int counters - packets dropped

Logical interface counters read from CPU:--------------------------------------------------------------------------------bytes received 21513660bytes transmitted 2835packets received 358561packets transmitted 21receive errors 0packets dropped 358539 is oit normal to have packets dropped?

MP18 by Cyber Elite
  • 5307 Views
  • 4 replies
  • 0 Likes

Palo alto HTTPS decryption?

Hi all, I am using PA-850. I configure to decrypt HTTPS, and use AD group policy to install certificates on client, it works well with AD users. but we have other situation that client is not AD users. do we have any ways to redirect client to the URL if client is not trusted certificates with firewall? then they must install the certificate if ...

Chivas by L2 Linker
  • 5836 Views
  • 6 replies
  • 0 Likes

Resolved! Wildcard certificate on PA firewalls

Hi Team, I'm trying to create a CSR in Panorama in order to get a wildcard certificate from our third party CA. In order platforms, I define as common name the format *.mydomain.com but in Palo Alto I'm getting an error: Failed to generate certificate and key. When I change the common name to .mydomain.com it allows me to create the CSR. I just ...

Stickied post for recommended versions?

Just wondering since this is a topic that comes up often and I actually just asked TAC about it myself, should we maybe have a stickied post on here that documents the recommended versions for each software track? I realize Palo Alto doesn't publish it anywhere but the knowledge is usually spread around among the users anyways after one or more...

jsalmans by L4 Transporter
  • 3652 Views
  • 3 replies
  • 3 Likes

User-Agnet 8.0.12-5 problem to read Windows server 2016 security event

Hello, I installed UIA 8.0.12-5 on WIN server 2008 R2 (FW PAN OS is 8.0.13). I'm throubleshooting userid login problem and it looks that log event (Event ID 4768,4769,4770,4624) are not readed by the user agent on Windows Server 2016. Connecting to WIN 2016 server I can see that Event ID 4768,4769,4770,4624 are on the security log but if I incre...

Resolved! Real time alerts for threats?

Is there such a thing with PAN? IE if the logs generate a critical alert can is there some logic to fire an email or generate a report with the relevant information?

drewdown by L4 Transporter
  • 8268 Views
  • 10 replies
  • 0 Likes

Panorama object service search not finding objects when searching on destination port

Running Panorama 8.1.3 Having an issue that when in Panorama that when I put a destination port in the search bar, it only matches against the name. When I go to the gateway, and do the same search it will find the service objects with the detination port match. This is important as for some reason many of our service names dont have the port nu...

App id “Non-syn-tcp”

I see a lot of non- syn-tcp from from few specific zone. I am sure that there is no asymmetric routing. If that has to be the case how to determine exact causing factor.Thanks

Sanssj by L2 Linker
  • 7010 Views
  • 3 replies
  • 0 Likes

Resolved! OSPF Inbound Route Filter

Hi,I see in the admin guide that it is possible to filter the default route so that it is not learnt by the OSPF process.Is there any way of applying a more granular filter so that I can restrict the Palo Alto OSPF process to only learn 10.0.0.0/8 routes? Similiar to an inbound Cisco distribute-list?Cheers

adevine by L1 Bithead
  • 10206 Views
  • 7 replies
  • 0 Likes

Resolved! Qos on application and class 1 and 4

I have created qos policy for application http-video and is defined in class 1 However when i run below commandsshow session all filter application http-video qos-class 1 show session all filter application http-video qos-classs 4 I see the application http-video on both? need to know why i see the application http video in the class 4?

MP18 by Cyber Elite
  • 3101 Views
  • 3 replies
  • 0 Likes

leaf and spine and security

Hi,In a spine and leaf ( vpc ) ,where we should place the firewall to protect the data center ? If we use layer 3 firewall all routing process will be shifted to the fw, spending huge amount on spine won't be beneficial ? Layer 3 or layer 2 recommended ?Thanks

sib2017 by L4 Transporter
  • 5061 Views
  • 1 replies
  • 1 Likes

Resolved! Global Protect - Linux Fedora , CA trusted cert error

Hi There,I'm having the same issue but not on self signed certificate and on linux ( Fedora 29) Global Protect is configured with the certificate signed by the Authorized CA.The Chain is:DigiCert Global Root CADigiCert SHA2 Secure Server CAServer certificate. It works perfect on Windows. On Linux, Fedora.I get the error Error: Gateway exgw: The ...

Resolved! qos traffic stats - regular traffic and default group

created qos for application and apply it to class 1 it is applied to the interface with 10Gig lan connection. traffic stats shows default group====regular traffic==40 --- assume does it mean that total traffic going via interface is 40? also default group traffic ==== regular traffic?? when i click on bandwidth tab on left hand side it shows ...

Capture1.PNG
MP18 by Cyber Elite
  • 5879 Views
  • 5 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks