General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Installing config on a different model.

Hi there.

I have a site with a 3020 (the only reason this site has a 3020 is when the device was bought, everyone thought it would be doing more than it is).

They are in a region that doesn't have 4-hour support, so they wanted a spare. The only thin

...

Configured PA-220 for home network, submitted a commit, and I am stuck!

Hello,

I followed these instructions:

https://live.paloaltonetworks.com/t5/Configuration-Articles/Setting-Up-the-PA-200-for-Home-and-Small-Office/ta-p/61838

At the end when I tried to commit it, I ran into virtual wire issues. So I took care of that p

...

PA-820 8.0.2 high management cpu repeatedly

Hey!

My PA-820 firewall does have a cpu utilization of 100% every day on exactly 13:04 o'clock.

It lasts for 3 minutes.

Top shows me four "pan_tasks":

Can someone help?

Resolved! PAN EDLs and Bitbucket

I am currently working with EDLs that use Bitbucket repos as the external sources. I have 2 EDL types: IP and URL. Both are supposed to allow/whitelist.

The ask was for engineers to be able to pull/commit/push, etc to those repos when they want to al

...

GP Error( 51): Driver is not installed, reinstall it now!

Unable to connect to a VPN server.

OS: Wondows 10 Pro

Error message:

(T11064) 02/26/18 07:18:22:506 Debug(1346): no flushdns key set
(T11064) 02/26/18 07:18:22:506 Debug(5067): DLSA, RestoreProxySetting now
(T11064) 02/26/18 07:18:22:506 Debug(5084): Pro

...

Resolved! Prototype not found on every update

Hi,

Every time Minemeld auto-update ( I don't know why this is automatic and if it is recommended). We have a custom miner with a prototype created manually and every time Minemeld updates seems to generate a new folder like "0.9.48" on /opt/minemeld

...

Multiple globalprotect gateways on one appliance?

I am implementing a remote access vpn solution but have been briefed that some users will need Different IP address than others. How best to implement this?

Resolved! How to interrupt or cancel cli output

I cannot find how to cancel or interrupt the cli output. Specifically the " show config running" command.

thnks in advance

vnt90

Resolved! External dynamic list failing at refresh

This should be simple, but i have been at it for much too long and support hasnt been able to figure it out. Hoping someone here has had this issue.

I have a simple EDL to allow (type IP) the source is https and it's a txt file on a bitbucket repo.

I

...

PBF monitor behavior not working

Hello, i'm configuring two PBF in order to isolate traffic between two destinations servers on two different ISP (without fail-over).

I have configured the PBFs with a monitor profile with Wait Recover option enabled.

I see that the traffic is being pr

...

Resolved! Profies confusion

What does host type(server/client) in profies

and track by source / source and destinantion signify

Suspicious HTTP Response Found (ID 54319) after updated to 8029-4784

Hi,

Anyone else notices increase amount of Suspicious HTTP Response Found ID 54319 after installed AppID 8029-4784?.

The threat vault description This signature detects a suspicious HTTP response

Category protocol anomaly

PANOS Min version 8.0.0

Severi

...

Panorama 8.0 log retention

Hello,

We recently upgraded our Panorama VM from PanOS 7.1 to PanOS 8.0, currently running 8.0.8.

After the upgrade and the migration process, we noticed that our traffic log retention capacity decreased to over a third (from around 100 days to aroun

...

Global Protect config problem: The server certificate is invalid.

Hello,

we are not able to connect to one of our Gateways anymore. We get the error: The server certificate is invalid.

I checked the following but this looks correct:

Incorrect time settings on the firewall.
Check the certificate's validation date

...

blocking unknow tcp and udp

The 2017 Palo alto networks best practices recommends blacklisting/blocking unknow-tcp and udp, my first thought is has something changed since this article ?

https://live.paloaltonetworks.com/t5/Management-Articles/Pro-Tips-Unknown-Applications/ta-p/

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Installing config on a different model.

Configured PA-220 for home network, submitted a commit, and I am stuck!

PA-820 8.0.2 high management cpu repeatedly

Resolved! PAN EDLs and Bitbucket

GP Error( 51): Driver is not installed, reinstall it now!

Resolved! Prototype not found on every update

Multiple globalprotect gateways on one appliance?

Resolved! How to interrupt or cancel cli output

Resolved! External dynamic list failing at refresh

PBF monitor behavior not working

Resolved! Profies confusion

Suspicious HTTP Response Found (ID 54319) after updated to 8029-4784

Panorama 8.0 log retention

Global Protect config problem: The server certificate is invalid.

blocking unknow tcp and udp

SCM Compatibility

Identifying Preferred/Recommended PAN-OS Versions

About FIN/RST Packets

API error messages

Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: API error messages

Re: Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: Error opening support ticket

Unlock your full community experience!

Resolved! Installing config on a different model.

Resolved! PAN EDLs and Bitbucket

Resolved! Prototype not found on every update

Resolved! How to interrupt or cancel cli output

Resolved! External dynamic list failing at refresh

Resolved! Profies confusion