This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Source User Doesn't Show

Dears, I have a problem with uses coming from WIFI and non-joined domain the source user doesn't show and show a blank please find the image.I have installed the CA's for our domain and the PA put didn't work. Our infrastructure as shown below. Wireless Controller "Cisco Aironet 1850 Series Mobility Experss"

Infr.jpg
Capture.JPG

IPsec Vpn tunnel was down

PA-850- 8.0.6-h3 Customer complains IPsec was down how can i check it on gui sytem logs or via cli. Ihave checked the Moniter>system logs and couldnt find any logs related to "tunnel-status-down"Thanks,Ranji

Resolved! SMTP Relay failing after PA update

Hi, I just upgraded to 7.1.16 and since that point my Windows server can no longer make a SMTP connection to a mail relay service (outbound.mailhop.org) on port 2525. When I look at the Traffic log, I see the action as reset-both and the threat is "Fragroute Evasion Attack For Unknown-tcp Traffic". Presuming this is a false positive, what is th...

"Deactivate License" : Where did they go and how can I reuse them?

Hello everyone, Has anyone actually used the "Deactivate License" feature to unlicense a vm and then license another vm? My goal was to move licenses from a v7 vm100 to a v8 vm100 on new hardware.I successfully deactivated the license on one of my 6 VM-100's. It seemed to work, the serial # etc was removed from the single vm. Now that it is gon...

dbrenipc by L3 Networker
  • 3483 Views
  • 2 replies
  • 0 Likes

SSL decryption inbound issue

We've been using SSL decryption inbound for a while. In order to decrypt traffic based on DHE and ECDHE ciphers, we moved to PAN-OS 8.0. On 7.1.10, traffic with those ciphers were not decrypted but passed through. Now, on 8.0.6, we see drops. The decryption profile sets TLSv1.0 only as protocol, but we allow other protocol versions and ciphers (...

ACortes by L2 Linker
  • 7913 Views
  • 7 replies
  • 0 Likes

Issue User-ID Agent some user mapping long time

Hi Expert , I found issue about UIA which some user logon into network sometime IP mapping user long time or sometime not mapping I must use clear user mapping and every time and ip map user on AD , I would like to know why user mapping longtime or not mapping show unknow however , I config cache User Identification Timeout (min) 720 mi...

Shutdown/Disable MGMT interface due to DNS issues

Hi Guys, I got a simple question for you: Is it possible to literally disable/shutdown mgmt interface, via CLI or webUI, in a VM enviroment when is not needed? I notice a DNS issue after we have deleted the IP address assigned to the MGMT interface via cli with command:"delete deviceconfig system ip-address" Obviously we have made PA reachable f...

Resolved! PA-5220 HA Config Ethernet or Crossover Cables?

The first step seems a bit contradictory, just looking for some clarification. I have 2x5220s that I am setting up in HA Active-Passive mode. To cable the dedicated interfaces it looks like I just use regular ethernet cables, but the second sentence "Use a crossover cable if the peers are directly connected to each other." seems to contradict th...

mike406 by L2 Linker
  • 13320 Views
  • 8 replies
  • 0 Likes

PBF and Tunnel monitoring failing

HelloI have strange intermittant issue with PBF and Tunnel monitoring. If I disable the IPsec VPN at both side and bring it up PBF and Tunnel monitoring is working at configured. ( Shows as up ) I have configured a monitor IP destination of an address across the tunnel. Randomly the PBF and Tunnel monitoring fails. Even thou the IPsec VPN is up....

Resolved! subinterface for vsys

Dear All, When we create subinterface, the main interface is assigned to one vsys(none option unavailable). So under a physical interface, when we create multiple subinterfaces and assign to different vsys, will this cause any issue?? and whether physical interface needs to part of any VR. I have attached screenshot for reference(i...

interface_detail.png

Understaanding MSSP

Hello brothers, Plz i really need your help, we have a big project with a big Service Provider, it's the MSSP, i know the concept but technically i don't know anything.As i understood, the MSSP is a security as a service, the Service Provider host the Firewalls Appliances in his own local, and sell the security service to its clients, but the bi...

user activity ACC -CLI

Dears I want to know the IP of this user "None",as per to a below image, through CLI ...Can I do? Please feedback with the command or the way to know who it is ? thanks

User Activity Log.png
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks