This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Palo Alto firewall generates SSL version / cipher suites errors

Hi, i have a very strange issue. I have a webserver protected by a palo alto NGFW, if i disable inbound ssl inspection policies everything works fine and i can access the server as intended. However when i enable the inbound ssl inspection policy, with the proper certificates imported in the NGFW, i always get SSL version/ Cipher suites errors ...

tombarat by L1 Bithead
  • 4459 Views
  • 4 replies
  • 0 Likes

Dynamic Update from Panorama doesn't work

I want to use Panorama to perform dynamic updates for the "Antivirus" and "Applications and Threat" sections.On remote firewalls, I configured Panorama as the update server.I also scheduled the automatic update via a template.In Panorama, I have the latest versions of "Antivirus" and "Applications and Threat" installed. However, they are never d...

Resolved! Rule allowed but policy-deny?

Hi, We have something strange in our firewall. We have a client/computer with Sonos software and the software need to update. When we click update in the software we get a message that something is wrong. So I checked our firewall and in the monitor I can see that the update needs to get pulled from akamai and it is denied. So I created a rule t...

ZEBIT by L3 Networker
  • 5331 Views
  • 2 replies
  • 0 Likes

Why is this traffic allowed when the rule should not allow it?

I am tidying up some rules that were "rush" jobs as part of the initial deployment. One rule "TEST-VI" was SRC ZONE - TRUST DST ZONE - PartnersDST Addr - I%%%%%A-VIPApplication - Any I was going to get rid of this as there is another rule after it with "Service 20,988,5678" which would be a better match. But when I looked at the tracffic for th...

palo.jpg

Resolved! PA200 commit failed (file size limit)

Hi, We are running commit from panorama to several PA200. Commit is failing, the reason is "Wildfire size limit" but we havent changed any value in Wildfire. If we restart management plane and run the commit again is working, the commit is done.PanOS is 8.0.9 Why are we having this commit error??

Resolved! How to configure URL Filtering SSL site

Hi all, I have a question regarding URL filtering. I set up URL filtering in Security Profiles to "Alert" for Google Tag Manager. Test and work with the browser access to "https://www.googletagmanager.com/". When I use Wireshark to capture packets, why do I see only packets ssl negotiations "clent hello", not responsed "server hello". However, ...

Resolved! DHCP server relay service down from Palo Alto monitoring

We are using DHCP server relay in Palo Alto provide IPs to network.We have faced issues aboutpalo alto stopped processing DHCP relayIt was not shown in system logsIt was shown in dhcpd.logs ==Warning: pan_dhcpd_cfgagent_initial_config_callback(pan_dhcpd_cfg.c:1902): pan_dhcpd_cfgagent_initial_config() failed2018-05-13 14:44:35.441 +0200 Sending...

Delete object group, created new obj. group, policies and objects deleted - how to revert back?

Since we do not have any spare Palo Alto FW's and our is production I must ask before doing something wrong... I deleted object group (that included 2 HA FW's), created new one with the same 2 FW's comited to Panorama, but now the rules and objects are deleted in Panorama, but on FW's there are still those ruls. Can I safely revert 4 commits bac...

Resolved! Error in minemeld on U16.04 from fresh ansible install

Hi, I have a new vm on U16.04 and have installed the latest minemeld using the minemeld-ansible. Once all setup and running it was fine but about 20 mins later where I did nothing as I left my desk I came back to "ERROR RETRIEVING MINEMELD METRICS: INTERNAL SERVER ERROR" Alerts on the screen 3 times. I have tried restarting the service ...

DROP_UPDATE on Minemeld

Hello Community, the logs on my Minemeld shows the below error for all that IPs that catch, could you please advice how to get ride of this problem? Thanks in advance

DROP_UPDATE.png

Global Protect - Clients with excessive failed logins

We've had Global Protect in production for a while now, but it has just recently been brought to my attention that we are having a lot of users locking their accounts out.The GP client prompts them for their AD username / password. Maybe they fat-finger their password or whatever. The GP client never gives them any indication of any issue, other...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks