This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Minemeld Installation Error - bower install - directory does not exist

Hello! My first go at using MineMeld and running in to some issues during installation. Installing on 64bit Ubuntu 16.04 LTS. I follow the steps:$ sudo apt-get update $ sudo apt-get upgrade # optional $ sudo apt-get install -y gcc git python-minimal python2.7-dev libffi-dev libssl-dev make $ wget https://bootstrap.pypa.io/get-pip.py $ sudo -H py...

Resolved! Minemeld on CentOS

I have seen a few older threads referencing minemeld on CentOS using ansible or docker etc, Does anyone have it running on CentOS natively without the use of other 3rd party tools? or an up to date walkthrough? The Ubuntu 14.04 setup is quick, simple, and just works but since there are no packagse (is this still the case?) I don't want to spend ...

hshawn by L4 Transporter
  • 6886 Views
  • 5 replies
  • 0 Likes

Resolved! Stop routing if PBF monotoring is down PA-500

First post to this forum! I have a PA-500 and 3 ISPs. 2 of the 3 VLANs are forwarded using PBF (VLANs 10 & 30 ) and the third uses the default route (VLAN 20). My (simplified) configuration is as follows; VLAN10 - PBF to ISP 1 fail-over to default if the monitor address is unreachable. <- This is working OK VLAN 20 - No PBF, direct to th...

James_D by L0 Member
  • 3296 Views
  • 2 replies
  • 0 Likes

Resolved! how interpret MAC in pcap

Hello,I have a doubt about how to interpret macs in rx pcap and tx pcap. I thought that:when the traffic enter a layer 3 interface:the mac destination addres in rx file must be the mac of ingress interface?and in tx the source mac, must be the mac of eggres interface?when the traffic enter a layer 2 interface:the source and destination mac don'...

Marivi by L2 Linker
  • 4666 Views
  • 2 replies
  • 0 Likes

Management CPU Utilization is 100%

Our PA-500 management utlization reaches 100% sometimes...according to PA support, There's a process called 'gdindex.sh' runs every 15 minutes for log indexing.We need to reduce the management plane traffic for better performance. Any suggestions?

Can I block IP immediately using EBL?

Hello I am using the Palo Alto Next Generation Firewall PA-3020 / PAN OS 7.02. I use EBL to block IP. After testing, it will take a long time for IP registered in the text file to be applied to the firewall. Of course, i set "repeat" to 5 minutes in the EBL setting. Also i checked that "repeat" was set to 5 minutes in the CLI. However, when i ch...

ragonfly by L0 Member
  • 1906 Views
  • 1 replies
  • 0 Likes

Resolved! youtube application

Hello I have a doubt about applications:If I search in my palo alto object>applications search: youtube I obtain next outputI can add to a policy rule youtube but when I open I found that don't have dependency, and implicitly application uses.I s correct to add youtube in a rule and not some child? If is correct to do it, this is equal to ...

youtube.JPG
youtube 2.JPG
Marivi by L2 Linker
  • 4868 Views
  • 3 replies
  • 1 Likes

Resolved! Split-Brain Enable HA Config Change

We are setup as active/passive and have intentionally caused a split-brain with our firewalls (5050's) by removing one from vwire mode and removing all cables except mgmt port to perform some migration activities. We left the "Enable HA" checked on both the primary and secondary. Question: We want to uncheck the "Enable HA" (primary first with ...

PA firewall with unknown master key and recovery procedure

Hi Team We have a firewall working in Active/Standby configuration. The firewalls has been configured with Master Key .We lost the master key secret ( in other context we not sure the current master key is default or custom configured but noticed its going to expire in 50 days) and would like to know how to restore the device before the master k...

Resolved! 3200 and 5200 Series New Interface Types

Can you please help us with the new 3200 and 5200 interface types, because it is not very clear in the hardware documentation? The firewalls now have HA1 and HA1-Backup dedicated ports. The 5200 also have AUX-1 and AUX-2. Can we still use any other data or management port for HA1 or HA1 Backup?The HSCI interface can be used for high speed HA2 di...

BatD by L4 Transporter
  • 2697 Views
  • 1 replies
  • 0 Likes

Resolved! Problem of PA-220 behind another router

Got a PA-220 to test.Want to setup something like below:Internet <-> Juniper SSG-140 (GW:192.168.1.1) <-> PA-220 <-> user's device (172.16.1.0/24) 1. The SSG-140 can reach internet2. The PA-220 external port (192.168.1.100) can reach internet too3. The PA-220 internal (172.16.1.0/24) cannot reach internet4. The PA-220 internal ...

jeremylo by L3 Networker
  • 2589 Views
  • 2 replies
  • 0 Likes

Resolved! [Minemeld 0.9.48] - Some prototypes not available in the GUI

Hello team! I hope you are doing alright ! It looks like that since the last update (0.9.48), I am no longer able to setup new nodes with the prototypes: stdlib.localDB OR stdlib.aggregatorIPv4Inbound Moreover, a couple of my miners/nodes now have an "unknown" type. Any idea of what could be the cause of that ? Thanks in advance f...

camsad by L1 Bithead
  • 8096 Views
  • 11 replies
  • 0 Likes

Resolved! PA-3260 hardware specification

Hi All, Does anybody know what CPUs are used and how many ram is installed for PA-3260?Our potential customer wants the hardware specification including CPU/RAM information but I cannot find those information. What I only found is following which only shows dimentions, power and etc; no cpu/memory https://www.paloaltonetworks.com/documentation/p...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks