This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! External dynamic list failing at refresh

This should be simple, but i have been at it for much too long and support hasnt been able to figure it out. Hoping someone here has had this issue. I have a simple EDL to allow (type IP) the source is https and it's a txt file on a bitbucket repo.I have added the certs (root and intermediate) directly from the CA that signed them (well known CA...

PBF monitor behavior not working

Hello, i'm configuring two PBF in order to isolate traffic between two destinations servers on two different ISP (without fail-over).I have configured the PBFs with a monitor profile with Wait Recover option enabled.I see that the traffic is being properly splitted by the PBFs, but when I simulate an ISP failure the traffic of the failing ISP p...

gmunoz by L1 Bithead
  • 3925 Views
  • 5 replies
  • 0 Likes

Resolved! Profies confusion

What does host type(server/client) in profies and track by source / source and destinantion signify

raji_toor by L4 Transporter
  • 2886 Views
  • 3 replies
  • 0 Likes

Suspicious HTTP Response Found (ID 54319) after updated to 8029-4784

Hi, Anyone else notices increase amount of Suspicious HTTP Response Found ID 54319 after installed AppID 8029-4784?. The threat vault description This signature detects a suspicious HTTP responseCategory protocol anomalyPANOS Min version 8.0.0Severity lowAction AlertFire release 785 Want to see if others are seeing the same thing on their firew...

54319.png

Panorama 8.0 log retention

Hello, We recently upgraded our Panorama VM from PanOS 7.1 to PanOS 8.0, currently running 8.0.8. After the upgrade and the migration process, we noticed that our traffic log retention capacity decreased to over a third (from around 100 days to around 30 days). We had no change in our network also no reason thinking to have an increase of the ov...

Global Protect config problem: The server certificate is invalid.

Hello, we are not able to connect to one of our Gateways anymore. We get the error: The server certificate is invalid. I checked the following but this looks correct: Incorrect time settings on the firewall. Check the certificate's validation dates (valid from and valid until) to make sure the date range is correct. Check the Time Setting o...

GP-log.png
Clermont by L2 Linker
  • 47098 Views
  • 9 replies
  • 0 Likes

blocking unknow tcp and udp

The 2017 Palo alto networks best practices recommends blacklisting/blocking unknow-tcp and udp, my first thought is has something changed since this article ?https://live.paloaltonetworks.com/t5/Management-Articles/Pro-Tips-Unknown-Applications/ta-p/77052 If it calls it unknown cause it doesn't have enough information to identify it, is it a goo...

jdprovine by L4 Transporter
  • 11412 Views
  • 10 replies
  • 0 Likes

Resolved! Is EDU 110 Training free?

I see that there are a few posts about similar training (EDU 101) being free, but I wanted some clarification on the other self paced training options. I'm a Palo Alto customer, and I see that I have access to "activate" a large number of training courses. Are the courses like EDU 110, 105, 121 free? I don't see anything about pricing. The last ...

Resolved! Troubleshooting GlobalProtect

PA220, 8.1.1, GPClient 4.1.1, GP license activated. Connecting to the GPportal/gateway works fine. Traffic routes as expected. We're still testing, so access is severly limited and policies wide open once connected. Literally, everything is allowed for GP users. However, when i attempt to access an internal SSL-protected site, the traffic is den...

Nathan.S by L3 Networker
  • 7214 Views
  • 8 replies
  • 0 Likes

SSLMGR certificate ocsp verification failed.Certificate status unavailble

I'm getting the following error while I can reacht the OCSP server.... SSLMGR certificate ocsp verification failed.Certificate 5200000D638821F4E9A6409C10000400000D63 status is unavailable > debug sslmgr view ocsp allCurrent time is: Fri Jun 8 08:33:33 2018Count Serial Number (HEX) Status Next Update Revocation Time ReasonIssuer Name HashOCS...

DaxVC by L2 Linker
  • 11639 Views
  • 3 replies
  • 0 Likes

Resolved! Filter for multiple subnets

My filter is not working, can you tell me why? ((addr.src notin '172.0.0.0/8') or ( addr.src notin 10.0.0.0/8 )) and ((addr.src notin '180.0.0.0/8') or ( addr.src notin 100.0.0.0/8 ) or ( addr.src notin 200.0.0.0/8 ))or for easier reading;(NOT or NOT) and (NOT or NOT) Basically,I want to see all traffic that does not source from my int...

Resolved! MineMeld for importing STIX XML files

Hey guys, I hope you are all doing great. Its my first touch to both STIX XML files and MindMeld, so I was hoping to get a shed of light with at least if it is possible? I am trying to find a way to import manually a STIX file (which I have attached) to the MindMeld so that it can feed my VM-100 FWs, is that possible and how can I accomplish...

Resolved! Cannot Ping Default Gateway

Hi Team, I am trying to set up a lab. I have configured PA and set up a client machine. But I have configured client machine and provided the IP address in the same subnet as one of PA's interface. Even after doing so, I am not able to ping default gateway which is set to one of PA's interface. Can somebody help ???????

SudhirK by L1 Bithead
  • 26756 Views
  • 6 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks