General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

LIVEcommunity System Update - Delayed

UPDATE 11/8/23 11:43 a.m. EST:

LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.

 

Thank you again for your patience and stay tuned

...

jforsythe by Community Team Member
  • 281 Views
  • 0 replies
  • 0 Likes

New Area for Engineering Blogs on LIVEcommunity!

We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!

 

This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl

...

jennaqualls by Community Team Member
  • 532 Views
  • 0 replies
  • 1 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1820 Views
  • 2 replies
  • 10 Likes

API set up with global protect and infoblox

Hello Community,

I hope i am in the right place to ask this question. I am working on building an API set up that will pull Global protect user information such as hostname, IP, etc... That data will then be fed into infoblox as our central dns sourc

...

ADefeo by L0 Member
  • 191 Views
  • 1 replies
  • 0 Likes

Authentication Fallback

Hello,

So, we currently authenticate administrators to our PA's via Radius (TACACS).  Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available? 

Thanks!

mrsold by Not applicable
  • 7403 Views
  • 10 replies
  • 0 Likes

List of domains to allow for in-flight WiFi

Hi all,

 

I've been working with a number of customers lately who have been trying to gather a list of in-flight wifi domains that they need to allow as GlobalProtect Enforcer exceptions and I thought I'd share them here. I'd also ask that you please

...

chmotley by L2 Linker
  • 4531 Views
  • 6 replies
  • 4 Likes

Resolved! Confirming Upgrade Path

Hello everyone, I just wanted to clarify/confirm the proper upgrade path to latest preferred 11.0.2-h2.  We are currently on version 9.1.12-h3.  From what I have gathered, would the below steps be the proper steps and path?

 

1.  Download and install

...

Rule hit count or unused rule in custom reports or CLI

There are no fields related to rule hit count or any way to identify unused rules in Panorama custom reports. Is there a way to get a consolidated view of unused rules across all device groups at once and not just through the policy page per device g

...

x2aembre by L0 Member
  • 264 Views
  • 2 replies
  • 0 Likes

PA5410 Version 10.2.4 not allow to set offload to true

Hello
We are detecting sporadic CPU spikes on a FW 5410 version 10.2.4 , the average is fine however, we observe sporadic spikes of 95% 96% ...100%. Before with the old FW model we did not have this problem and we have not changed any configuration.

W

...

Alpalo by L4 Transporter
  • 213 Views
  • 2 replies
  • 0 Likes

Error generating a new certificate

Hi, we are trying to generate a new elf-signed certificate in Panorama and we receive this error: Failed to insert certificate into configuration. Failed to find beginning of certificate. Make sure certificate starts with BEGIN CERTIFICATE tag.

 

This

...

cert1.JPG
cert2.JPG
BigPalo by L4 Transporter
  • 10342 Views
  • 14 replies
  • 0 Likes

TCP-RST-FROM-CLIENT and TCS-RST-FROM-SERVER

Hi All, 

 

As captioned in subject, would like to get some clarity on the tcp-rst-from-client and tcp-rst-from-server session end reasons on monitor traffic.

 

Even with successful communication between User's source IP and Dst IP, we are seeing tcp-rst-

...

Jimmy20 by L2 Linker
  • 141279 Views
  • 6 replies
  • 1 Likes

Support account with personal email?

Purchased a 440 lab unit for my personal lab through my previous employer who is no longer in business (and inaccessible email) so I need to now register it with my own personal email but am having trouble. Trying to study for PCNSE after getting my

...

VK9H13 by L0 Member
  • 240 Views
  • 1 replies
  • 1 Likes

Upgrade VM-Series model - VM100 to VM300

Hello.

I have as a goal to upgrade the palo alto firewall from VM100 to VM300.

 

I am in a process of understanding the process, so I am wondering if I could get some assistance from this forum.

Thank you in advance.

 

Going through the guide

Upgrade

...

alwi by L0 Member
  • 190 Views
  • 1 replies
  • 0 Likes

Verify CA root certificate

Hi,

 

Related to the new Emergency Update Required - PAN-OS Root and Default Certificate Expiration 

 

After you do the workaround to renew the certificate. Is there any way to check the new validation date for this internal cetificates to check its

...

BigPalo by L4 Transporter
  • 262 Views
  • 1 replies
  • 0 Likes

Cloud Identity Engine

While attempting to synchronize an on-premises server with Cloud Identity Engine, we encountered the following error

 

Confirm the domain name configured on the agent matches the Canonical Name of the domain controller to ensure Cloud Identity Engine

...

Screenshot 2023-05-24 221725.png
Screenshot 2023-05-24 221635.png
Top Liked Authors