This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

Resolved! SSL cert mgt-Chrome issues

I generated and imported ssl certificate for secure management. I also made sure the CA is on the local machine. I have no issues with Firefox or IE but on chrome, it shows me cert r=error for mgt interface. Did anyone face this before? please offer me a solution if so. Thanks.

Resolved! IPsec question

HelloI have many IPsec connectios on my PA. But their are 2 that both use 192.168.100.xNow IPsec A is policy based. So I have configured the proxy ID's. All working fine. Now I have narrowed the routes down to the 2 host I require. Which are 192.168.100.32/32 and .33/32 , IPsec B is a tunnel / route based IPsec. I've added the routes in which ar...

Resolved! Issue with setting QoS egress value with API

For scripting purpose I need to be able to set egress-max values in QoS with the API.First I created a QoS profile, TRUST-QOS, and set the egress-max to 20In powershell, I have the following: $paURL = "https://" + $PAIP + "//api/?key=" + $apiKey + "&type=config&action=set&xpath=/config/devices/entry[@name='localhost.localdomain'...

Global Protect on Chrome OS forget and reset portal.

I keep having to click forget on the chromebook globalprotect client and re add the portal to get it to connect to the VPN on the PA firewall. This happens daily to many of the Chrome OS devices.Also the + button to add a second portal does not work.We are running Chrome OS version 68.0.3440.118 (Official Build) (64-bit)HP Chrome Book also happe...

DNAdmin by L1 Bithead
  • 4214 Views
  • 5 replies
  • 0 Likes

Resolved! internal routing being blocked

I'm having an issues with some internal routing I have two virtual router that have statics routes for an internal phone network on a different router in my trusted zone I can ping from computers in my lan but when i try and access any websites or management tools it doesn't work if I add a persistent route on the desktops it start to work but w...

Drawing2.png
kclarke6 by L1 Bithead
  • 5613 Views
  • 7 replies
  • 0 Likes

Panorama - dynamic updates not working

Software Version 8.0.9Application Version 8024-474 Panorama VM is not receiving dynamic updates. I have checked traffic is allowed and also license is not expired.On manual check it is getting this error. Also tried updating by directly uploading the file. Apps+Threats file uploaded but gave error below. Apps file uploaded and it was able to g...

image.png
image.png
image.png
image.png
raji_toor by L4 Transporter
  • 5058 Views
  • 4 replies
  • 0 Likes

Bug fix

Do I have to go to 7.1.7 to fix this bug, since it is addressed as the fix for this bug or will a newer version fix it like 7.1.18 or 7.1.19 still fix it even if it is not listed in the list of fixes? You would think that the newer version more even if it not listed.

pabug.PNG
jdprovine by L4 Transporter
  • 5290 Views
  • 10 replies
  • 0 Likes

Resolved! SSL decryption troubleshooting - decrypt-cert-validation

I have been working with SSL decryption over 4 month on testing team. Most of the traffic is OK but I see some of the traffic are being Aged-Out and some and decrypt-cert-validation as the session end reason. Tried to do packet capture without seeing the reason it being blocked. The end user receive the error: "There is an issue with the SSL ce...

2018_09_26_14_53_27_Certificate_Error.jpg
2018-09-26 14_57_38-trs.pcap.jpg
2018-09-26 14_56_41-rcv (2).pcap.jpg
2018-09-26 14_55_59-fw (2).pcap.jpg
SShnap by L3 Networker
  • 38036 Views
  • 5 replies
  • 0 Likes

Resolved! QoS and SSL decryption questions.

Seems some of our customers are trying to slow down youtube, facebook etc. without SSL decryption. The confusing part is in the logs these show up as youtube-base, facebook-base etc but only sometimes and then other times they show up as SSL. So is using the QoS feature pointless without performing SSL decryption first? Ref:https://live.paloalto...

1Gbps support for PA-500

Hello, We decided to upgrade our internet line to 1Gbps from current 100Mbps and now we are using PA-500. As PA-500's Threat prevention throughput is 100Mbps, does it mean we only have 100Mbps(transmission speed) even the PA-500's interface capacity is 1000Mbps? ThanksQu Dong

qd_056 by L2 Linker
  • 3736 Views
  • 3 replies
  • 0 Likes

Authentication via LDAP server not sending complete DN name

Hi Team, I have configured LDAP server profile and confirmed the condition of reading group via Group mapping it works. When I try to test the LDAP username through authentication profile it succeed upto LDAP authentication but after it is sending DN name only with domain name and my user get failed to authenticate. What else I need to check. ...

Problem with MS Exchange 2016

hellowe have EXCHANGE server at TRUST zone.When we try to make SSL inbound inspection to this server active sync does not work and even when we try to open OWA via browser we get an error ERR_SSL_VERSION_OR_CIPHER_MISMATCH Is there any idea where can be the problem?

Radmin_85 by L4 Transporter
  • 4956 Views
  • 4 replies
  • 1 Likes

Resolved! Replacing office 365 from XML and RSS with Restful API

Hi all, In view of the changes Microsoft is going to make in future as describe in the following link, would the current miner for O365 still works? https://support.office.com/en-gb/article/managing-office-365-endpoints-99cab9d4-ef59-4207-9f2b-3728eb46bf9a?ui=en-US&rs=en-GB&ad=GB#ID0EADAAA=4._Web_service&ID0EACAAA=4._Web_service

chtoh82 by L2 Linker
  • 18250 Views
  • 12 replies
  • 1 Likes

Yahoo Mail Client

We recently started experiencing a problem with Yahoo app on Android devices or the Yahoo client from receiving email through our PA's. Has anyone experienced a similar problem? Thanks in advance.

Raimson by L0 Member
  • 2882 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks