General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2881 Views
  • 2 replies
  • 14 Likes

Resolved! Disable User-ID Syslog messages

I get litterally millions of the syslog messages below (different users), and I think that they have to do with the user-id agent or user identification in someway.  Currently I am logging absolutely everything to a syslog server that pumps it all ov

...

DIRTT by L2 Linker
  • 2286 Views
  • 2 replies
  • 0 Likes

ssl err_cert_authority_invalid

Hello 

 

I have added our selfsign SSL that we generated from a windows CA server for our district. When I add it to the firewall under the Device Cert and use it for the forward trust I am getting this error 

 

ssl err_cert_authority_invalid

 

I am not su

...

Resolved! Power Module failure

Is there any other way to see if a power modules as failed? I just happened to notice the LED lights were red on the front of the secondary PA but my primary PA is in another building altogether so I would not know without going over there.

jdprovine by L4 Transporter
  • 3639 Views
  • 13 replies
  • 0 Likes

Qos Policies for G-rollout.

For G-site rollout effort,is there a way to write Qos policies so they apply per client IP flow when they are communicating to google IP address?    A way to give rate limiting per client IP(thousands of clients) for google destination IP?     The ke

...

kpotru by L1 Bithead
  • 2260 Views
  • 4 replies
  • 0 Likes

MineMeld age_out not withdrawing ips

I'm very new to MineMeld, and I am having issues withdrawing ip addresses from a list. 

 

The miner checks a local list, and the list has two ips in it currently. I'd like the ips to be age_out after 24 hours, even if they are still on the local list

...

PF by L1 Bithead
  • 6744 Views
  • 12 replies
  • 0 Likes

Logs in GUI are blank

We noticed that the log view in the gui for the nodes, indicators, etc no longer populate anything. The node view does show indicators being added and removed, so we know they are pulling in data, the logs just don't show anything.  Any idea where we

...

feeeds by L1 Bithead
  • 3786 Views
  • 4 replies
  • 0 Likes

Output Node Disables

using the minemeld.ft.redis.RedisSet prototype for output and 'state' is started but the output is disabled.  on the configuration tab the output says 'enabled' however still not working.  I have the URL in the Palo Alto and it connects successfully

...

jsamide by L2 Linker
  • 3156 Views
  • 1 replies
  • 0 Likes

Ldap User Group Maximum Confusion

Hello,

 

On a PA-3050 PAN-OS 8.0.8 wie an error messaged regarding the group limit:

 

User Group count of 11061 exceededs threshold of 10000

 

as in the PAN-OS 8 docu:

 

  • VM-50, VM-100, VM-300, PA-200, PA-220, PA-500, PA-800 Series, PA-3020, and PA-3050 firew
...

Resolved! Create EDL, first line invalid

Hi, trying to create an dynamic IP-List (EDL) including two subnets:

10.0.1.0/24
10.0.2.0/24

The firewall downloads the list but displays the following error "Valid entries(1) lines skipped(1)" and when I display the list only 10.0.2.0/24 shows up. If I...

  • 24014 Posts
  • 99 Subscriptions
Top Solution Authors