General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Query on wildcard certificate

Hello, Our wildcard certificate doesn't have any SANs associated with it. Is this a requirement for usage of a wildcard cert?Can I use the same certificate for both web management and GP? Thanks in advance.

Farzana by L4 Transporter
  • 3068 Views
  • 2 replies
  • 0 Likes

Resolved! HA Connectivity between 2 Data center with Fiber connection

Dear All, Can anyone please help regarding an HA configuration between 2 different data centers far in distance from each other, and connected to each other using a Fiber link. is that configuration possible? how to do this over only one link between the 2 locations? Thanks,

Resolved! Check other Panorama admin accounts last login time

Hi, Please can someone tell me if there is a way to check the last login time of administrator accounts other your own account on Panorama (8.1.1) ? We have multiple administrators and need to be able to identify accounts which are not being used. I am aware you can check the last login time of the account you are logged in with yourself, but I ...

Dancourt by L0 Member
  • 5688 Views
  • 2 replies
  • 0 Likes

Resolved! downgrade from 8.1.3 to 7.1.16

I am trying to develop an upgrade path from 7.1.16 to 8.1.3 and i have a test PA220 that I am working with. I don't want to have to to a factory reset to my test firewall but so far it has allowed me to upload a 7.1.16 image, but they when i try to install it it give me the error" failed image wrong for platform" then my software file for 7.1.16...

jdprovine by L4 Transporter
  • 2452 Views
  • 2 replies
  • 0 Likes

Resolved! Site / urls you don't want to decrypt

Hi I have a set of decrypt rules 1 to no decrypt based on src addressor dst addressor url - the usl is from custom objects / url category where I add in url's lile *.lync.com then i do my decrypt line so the above gets hit first and then the decrypt I also notice there is device / cert management / ssl decrypt exclusion << which seems to b...

ssl decryption and temp cert management

Hi I ran into an issue with the decryption cert being provide by my PA it had expired. it was 30 days in. I believe this is an issue with the date time comparision and timezones as it has fixed itself today. How do i find / look at these temp certs via the clihow can i delete / renew or purge them from the cli A

Dynamic update error " Failed to upload image..."

While trying to push dynamic updates from Panorama to managed devices it is failing for some of the devices(PA-200)It gives an error " Failed to load image.."We have checked the licenses of the devices for which dynamic updates are failing and found that it is valid.Also the PANOS version of Panorama is 6.0.4 and the managed devices PANOS versio...

tac.in by L3 Networker
  • 7205 Views
  • 3 replies
  • 0 Likes

Rest API for CPU utilization

Hello, I'm trying to create a Rest API URL to check the CPU utilization on my management and data planes and create a report to monitor over time. Using commands like show running resource-monitor did not give me exactly what I was looking for. I used the <firewall ip>/debug and got the following XML: <response status="success"><...

ha sync issues

I am have trouble with intermittent synch failures between my primary and passive firewalls. I am currently at OS7.1.16 and TAC told me that to fix my sync issues I need to upgrade to 8, Any thoughts on this

jdprovine by L4 Transporter
  • 6434 Views
  • 11 replies
  • 0 Likes

Resolved! Vsys + Failover config (Urgent!)

Hi,I am very new to PaloAlto and currently trying to figure out the following: 1. is HA or Failover VSYS specific? 2. if so, how do I find failover/HA config per vsys?3. How do I setup failover/HA per vsys? the appliance i am using is PA-3020 software version 7.x. I will really appreciate your help with this. Kind regards,Ali

qasim02 by L2 Linker
  • 7795 Views
  • 7 replies
  • 0 Likes

Troubleshooting GlobalProtect client postvpnconnectcommand

Hello Community, for a customer we are trying to install the GlobalProtect client on 100 laptops. this works great the laptops connect to the netwerk using the globalprotect client. the problem we have that the postvpnconnectcommand is not running the command we want it to. it should be running an drivemapping batch file so users are able to acc...

Panorama zero window size

Hi, we have an HA pair of M-100 Panoramas which were running fine until we attempted to upgrade the memory to 32GB to be able to run version 8.1.3. The passive Panorama went fine but the active would not boot after the memory was upped so a replacement was sent. The box was swapped and config applied then memory installed and upgraded to 8.1.3.F...

Martfalc by L0 Member
  • 4322 Views
  • 2 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels