General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! How to view threats, blocked activity over time

I am trying to understand how to view threats, malicious IPs, etc over time. For instance in the ACC tab I understand one can view threats, threat source IPs etc. I am not seeing how to view trends, for example if we want to see if there has been an

...

ccfritz by L1 Bithead
  • 621 Views
  • 1 replies
  • 0 Likes

GP users are getting denied random times

I have global protect v5.0.5 deployed to all Corporate Windows and some users reported that when they work everything stop to work and suddenly after 5-10 minutes is back again without disconnecting them from the global protect .This happen random ti

...

using NAT to "change subnets"

Hello community,

 

I have what I think is an odd use case for NAT but am curious if it would work.

We are readdressing our campus and have a series of vending devices with no way to change the static IPs. All of those devices need to "move" to another s

...

mnaylor by L1 Bithead
  • 1570 Views
  • 9 replies
  • 0 Likes

Changing the IP Address of Panorama

Hi Gang,

 

We need to change the management IP address of Panorama due to a complete change in our network. It runs in, Panorama mode, and manages several firewall pairs (which forward their logs to Panorama).

 

My questions is:

  1. Is it as easy as changing
...

Log Collector Status

Hello -

From local firewall Device > Management > Logging and Reporting Settings > Log Collector Status > Show Status it says that there is an error for Device Connectivity

 

All of my logging is working just fine though.  Is this just a bug?

From comman

...

DC.PNG

Unable to Register Devices - Please contact Support

Hi - just bought 3 No. PAN-PA-220 devices.  I've tried to create a New User via support.paloaltonetworks.com but just keeps coming back "Error: unable to create user account. Please contact Support."  I wish to get these registered.

 

 

Can anyone help

...

JonNewson_0-1585908918962.png

Scheduled Log Export based on custom queries

Is there any option to schedule custom traffic reports based on custom queries and to get it exported automatically .?

Currently, we are exporting the traffic logs manually from  Monitor > Logs >Traffic and pasting the queries ( some of the sample que

...

Resolved! 10.1.4 HA config sync problems with certificates

I don't know if this is a 10.1.4 bug or by design but I have a pair of PA460's in HA with config sync enabled.

 

1. Firewall won't sync a certificate with a private key to the other firewall.  It syncs the root CA only.

2. I can't sync any SSL/TLS servi

...

Nicka by L1 Bithead
  • 879 Views
  • 1 replies
  • 2 Likes

Global connection issues with Wildfire EU Cloud?

Somebody else has same issue with Wildfire EU Cloud?

System Log full of "wildfire-conn-failed" events and in traffic log can see corresponding connection issues with 154.59.126.51, packets received = 0, therefore application "incomplete". Normally it

...

Anon1 by L4 Transporter
  • 2715 Views
  • 9 replies
  • 0 Likes

UID Redistribution SSL Errors

Hoping someone else has run into this.  I have been implementing UID redistribution in our PAN environment.  I've stumbled across a few firewalls that will not establish a connection on port 5007, once the UID service is moved off of the default Mgmt

...

Resolved! Inconsistent policy action on the same traffic flow

Hello,

 

I do have a connection flow for Microsoft Teams direct routing domain sip-all.pstnhub.microsoft.com where I do have a NAT rule and a security rules for bidirectional traffic with the Microsoft domain from our DMZ. The issue is that the firewal

...

bambox by L1 Bithead
  • 1036 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors