General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 195 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 878 Views
  • 0 replies
  • 0 Likes

Elastic search suddenly down

Hi,

 

I am writing this to ask if anyone has experience with ES suddenly down? After restart only logs become normal. I need idea on what we can check to know the root cause of ES suddenly down.

Diffie-Hellman-Groups: Why no brainpool curves?

While setting up a VPN with a Cisco ASA, I stumbled accross the quite small list of DH Groups implemented in PA firewalls.

So I wonder what the rationale was for choosing the implemented groups. As a German engineer working for goverment and other pub

...

mringel by L0 Member
  • 2651 Views
  • 1 replies
  • 2 Likes

How do I update OSS apps only?

Hello all,

 

I've found this kb: 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CltxCAC

 

I'm trying to install the latest apps on the OSS. I've downloaded "all apps" from csp and when I'm trying to install it, I receive t

...

Chibichen1988_0-1718867559827.png

MAC-in-MAC on esxi - ha_aa_pktfwd_err_decap

I've been trying to track this issue down for a month or so now and haven't had a lot of luck with any of the permutations in my vmware environment. 

I am running two 11.0.4-h2 PA-VMs in Active/Active mode. I'm using floating gateways and all is runn

...

Resolved! Replace SFP Process

Hi we have a PA-850. Port 5 has a RJ45 SFP adapter, internet connection. We are upgrading our Internet connection (bandwidth increase only, no IP changes) and the new handoff from the ISP is single mode fiber, so I purchased a PAN-SFP-PLUS-LR to supp

...

Resolved! Migration of HA Pair to Panorama!

Hello Folks,

 

I'm planning to Migration of HA Pair (active-passive) to Panorama, can someone help to understand whether ther will be a service interruption during this phase?

 

HA Pair -> 8.1

Panorama -> 8.1

 

Best Regards,

Pradeepkumar 

TLS 1.3 has General Protocol Error

Hi all,

Fairly new to PAN OS and have just enabled decryption on my 10.2.3-h4 VM-300 firewall.  In my decryption logs, all entries for TLS 1.3 are having a 'General Protocol Error'.  When running a v11.0.1 firewall (that I had to downgrade due to dat

...

Certificate Expiry

Hi All,

I am trying to import the Azure SAML certificate to use it in the Identity Provider Certificate as it is expiring this Thursday. But i am getting the attached error. Does it mean do i need to delete the existing one and then import it? I have

...

Resolved! RTP traffic not matching App-ID Rule

I have a strange issue where I have a configured rule to allow the "rtp" and "rtcp" App-IDs with application-default service from any-to-any. Below that rule I have a generic permit-any rule with application service any. Screenshots below. The behavi

...

IanGraham_0-1704745546729.png
IanGraham_3-1704745826139.png
IanGraham_2-1704745786416.png
  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels