General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2916 Views
  • 2 replies
  • 14 Likes

Resolved! SSL/TLS Service Profile - Automate Certificate Replacement

Hi,

 

I'm looking for an automatic way to update the certificate in a SSL/TLS Service Profile (which forms a part of the certificate replacement process). From what I can find, steps 1 and 2 can be automated with Ansible (or XML API), but I cannot fi

...

bgre033 by L1 Bithead
  • 1205 Views
  • 3 replies
  • 0 Likes

SNMP Trap Monitoring

Hello,

We were wondering about the feasibility of configuring SNMP traps for some of our Firewalls instead of using SNMP polling.

Currently we're using SNMP polling to monitor information like :

- Interface status
- Interface bandwidth
- Temperature
-

...

Khassam by L1 Bithead
  • 1204 Views
  • 5 replies
  • 0 Likes

Resolved! How to escape a line feed in login banner via CLI?

What is the escape character/ sequence for LF or CR/LF in cli mode?

Via web interface it is possible to create a multiline login banner with line breaks that looks like the example below.

line 1 test

line 2 login

line 3 banner

This shows up tidy during lo

...

panwmod by L0 Member
  • 6754 Views
  • 8 replies
  • 0 Likes

Resolved! New user creation error

Hey everyone, wanted to ask for some help, I created a new user with wrong email for SSO, is there a way to eliminate this user it is not showing under manage users so I was wondering where I can edit that. Thanks

arces01 by L0 Member
  • 764 Views
  • 3 replies
  • 0 Likes

Issue with routing possibly?

Needing a little help. I have a PA 5220 within a secure enclave (so no connection to the internet). I can ping a gateway in another enclave without any issue but when I ping the network beyond that gateway I get no reply. My GW external interface and

...

NFS sessions undecided after fail-over

Situation:

NFS Client src:828 dst: 2049 --> PAN 7050 HA Cluster --> NFS Server (NFS Session is up and connected without issue)

 

Palo alto cluster fail-over occurs (upgrade/issue - doesn't matter)

 

NFS Client src:828 dst:2049 -->PAN (Session is marked as

...

Resolved! Clarification on http2 traffic and decryption

Hi all,

 

I was hoping to get some clarification on http2 and firewall interaction. I understand that generally http2 works without issue as long as it's being decrypted. I also understand disabling inspection/decryption (Strip TLS ALPN) on http2 tra

...

KGDrake by L0 Member
  • 834 Views
  • 1 replies
  • 0 Likes

Resolved! Adding IP's on Policies on panorama

Hi All,

 

Needing your suggestions i'm adding a list of ip addresses on policy that I created on branch and when I push it I got an error on NAT ISP 1, NAT is not a problem I knw because everything is working correctly. I notice that this has been ad

...

weezy by L2 Linker
  • 657 Views
  • 2 replies
  • 0 Likes

Layer 3 sub interfaces on Hyper-V

Hi all,


I am trying to get Palo Alto VM series (10.2.3) to work with layer 3 sub interfaces on Hyper-V (2022).
I configured interface/subinterface from the documentation (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRkCA

...

pa_subinterface.png

Resolved! Implementing Applications Over Services

We recently completed a migration and I am in clean up mode.  I would like to utilize applications but we do some no decryptions exceptions rules that bypass decryption.  I am concerned that without decrypting, the rule will break and traffic won't f

...

Access PA-440 MGMT Interface via Cisco Switch

Hi Guys,

I am working with below scenario and would like some help.

 

As shown in diagram:

A cisco switch IE3400 is connected with PA-440 with trunk connection and also one of the interface of switch is connected to MGMT port of PA-440.

There are mu

...

Janmejay_Dave_1-1687412475430.png
  • 24022 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors