This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

global protect client unable to connect windows xp

Hi Team can anyone help me with below issue We are having an issue with Global protect VPN connections from the Windows XP operating system.We can connect to the SSL VPN via the browser and download the Global protect client. But the issue is when you try to connect by entering the credential from the Global protect a client, it gives an error "...

HemanthV by L2 Linker
  • 5423 Views
  • 3 replies
  • 0 Likes

Resolved! Bug: Multiple Portals work only on GlobalProtect 4.1.0

Good day all, i was enthusiastic when 4.1.0 appeared, because this version finally allowed to manage connections to many PAN portals in a very easy way.Sadly, in 4.1.1, 4.1.2, 4.1.3,4.1.4,4.1.5,4.1.6 this is no longer working! The dropdown menu is not active, and the buttons Add/Delete/Edit in Portals config window are missing. I'm pretty sure ...

Resolved! recommended version of Panorama 8.1?

I have new PA that has come with 8.1 version.Currently we have PA and PAnorama running on version 8.0.9. Which is the recommended version of PAnorama in 8.1?

MP18 by Cyber Elite
  • 3466 Views
  • 3 replies
  • 0 Likes

moving firewall from one device group to another

I have one parent device group with 7 firewalls.I have created 2 new device groups and i need to move 4 firewalls from the parent device group into these 2 new device groups.so each new device group will have 2 firewalls each. right now issue is that when we push policy to 1 firewall it does out of syn for remaining.As all these firewalls nee...

MP18 by Cyber Elite
  • 5832 Views
  • 6 replies
  • 0 Likes

Resolved! does panorama gets local config from firewall

On one of education videos it says that in background panorma talks to firewall every 90 mins or so and pulls whole configfrom palo alto(local config on palo alto and global config pushed via panorama? Need to confirm if we have local config on palo alto and that firewall dies then will panorama have whole config of that firewall?

MP18 by Cyber Elite
  • 4514 Views
  • 6 replies
  • 0 Likes

Resolved! PA not installing antivirus automatically

On Active PAssive PA both devices are configured to download and install the antivirus every hour.Today PAssive PA installed the software but on Active it only downloaded the antivirus update. I need to manually install the antivirus on the active PA. below is fail reason how jobs id 34946Enqueued Dequeued ID Type Status Result Completed--------...

MP18 by Cyber Elite
  • 3862 Views
  • 2 replies
  • 0 Likes

Resolved! Single packet threat pcap and disk space alert

I have enabled threat signature to capture single file only. but from last 3 days i see so many same threat logs with pcap done. i got email today of disk space alert i checked disk space show system disk-spaceFilesystem Size Used Avail Use% Mounted on/dev/md2 3.8G 3.3G 341M 91% //dev/md5 7.6G 3.4G 3.8G 48% /opt/pancfg/dev/md6 3.8G 2.7G 910M 76%...

MP18 by Cyber Elite
  • 2655 Views
  • 1 replies
  • 0 Likes

Resolved! losing panorama config pushed to firewall

wondering if we have pushed all the config from panorama to pa.PA has all the global security polices. what will happen if we lose that panorama device like hardware failure? or if we delete all the config from panorama and give it reboot?

MP18 by Cyber Elite
  • 2979 Views
  • 2 replies
  • 0 Likes

Resolved! ssl decryption and policy deny

I have configured ssl decryption and rule is there to allow the traffic IT is hitting the right rule but policy says denied? what can be reason for this?

Capture.PNG
MP18 by Cyber Elite
  • 7925 Views
  • 5 replies
  • 0 Likes

Resolved! session offfload and flow basic

When we do session offload then PCAP can not capture the session offload traffic .if i am also doing flow basic on that then flow basic will not be impacted by session offload? RegardsMike

MP18 by Cyber Elite
  • 4837 Views
  • 4 replies
  • 0 Likes

Resolved! Wildfire appliance on a darknet

I have recently been given the responsibility of installing and managing a previously purchased WF-500. It was purchased for an environment that is completely disconnected from the Internet, totally dark. My question is - is there a way to manually download wildfire signatures and updates and install them on the appliance?

Resolved! ssl-decrypt exclude-cache ---SSL_CLIENT_CERT

when i run below command show system setting ssl-decrypt exclude-cache VSYS SERVER APP TIMEOUT REASON DECRYPTED_APP PROFILE EXCLUSION_LIST_MATCH13.71.172.130:443 ssl 42077 SSL_CLIENT_CERT undecided default No does this mean that PA can not decrypt the ssl traffic due to client cert? what can be actual reason behind this?

MP18 by Cyber Elite
  • 5121 Views
  • 2 replies
  • 0 Likes

Resolved! Decryption Profile ----No decryption

i am using default decryption profile. Under tab no decryption i see below block sessions with expired certs need to understand when does this setting is used when i am doing the ssl decryption or not doing ssl decryption? also does it only apply to ssl decryption policy ?

MP18 by Cyber Elite
  • 3738 Views
  • 4 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks