General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 85 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3329 Views
  • 2 replies
  • 14 Likes

Resolved! Upgrading 7.1 to 8.0: New Log Storage

Hi


We are upgrading to 8.0 and have noticed the cavet about new log storage in 8.0. We do not have log collectors setup, but are collecting logs in Panorama (threat and traffic only) and wonder if the existing log migration applies to these as well?

 

T

...

RSporbert by L1 Bithead
  • 11416 Views
  • 14 replies
  • 0 Likes

Resolved! URL Filtering Eval License - how to remove?

Every day we get email alerts:
SYSTEM ALERT : critical : License for feature url-filtering expired on xxxx/xx/xx

How do you remove the URL Filtering evaluation license??

There is no option in the GUI to remove it.

I could see an option in the CLI to requ

...

moha by L0 Member
  • 4101 Views
  • 3 replies
  • 0 Likes

Resolved! How to change a miner timeout

Hi all,

 

A simple question, I hope.  How do I change the default timeout for a certain miner - panos syslog miner in may case.

I'd like to change the timeout to be 30 days, rather then an hour or so that seems to be set now.  I could not find a way

...

update withdraw.png

Resolved! NAT rule to change internal IP to another on same subnet?

Hi folks,

 

I have created a internal zone IP address I want to use as generic for FTP communications 192.168.1.9.

I want to NAT this IP to our current FTP server 192.168.1.19.  This way when our FTP server changes we just change our NAT rule rather tha

...

OMatlock by L4 Transporter
  • 4719 Views
  • 11 replies
  • 0 Likes

Script or custom report ?

Hi All

 

I’m new in the world of Palo Alto, the guy in charge of this just left our company so I’m doing his task until someone else arrive

 

One thing he had to do for audit purpose was to do a report for each palo Alto  with

 

Device state

HA Status

Softwa

...

Best way to integrate with panos?

There's ebl, edl, persistentdag, nonpersistentdag, etc. Limits on the number of feeds.

 

Does anyone have a concise summary of some kind which makes picking which one of these, or combination of these, is the best route to go for integrating with pan

...

chirss by L3 Networker
  • 2970 Views
  • 1 replies
  • 0 Likes

Global VPN

Hi All,

 

Since IOS devices has issue in global vpn due to which it cannot access the DNS define in gateway when splittunneling is enabled.Due to which user cannot access certain URL so we added them in DNS suffiex , but if we want to define the domain

...

Himarya by L1 Bithead
  • 1668 Views
  • 1 replies
  • 0 Likes

Migrating Site to Site VPNs to IKEv2 & Suite B Crypto

Dears,

 

I have multiple site to site VPN between my branches and most of them are terminated on PAN3020 and PAN-820.

I want to upgrade them all to IKEv2 and Suite B Cryptography.

 

What is the recommended IKE and IPSEC proposals when moving to IKEv2 and

...

Ammar by L2 Linker
  • 2080 Views
  • 1 replies
  • 1 Likes

Resolved! Critical License Expiration

Hi! I have a PA-VM 300, and I've got the error message "Critical License Expiration" warning.

I can't seem to ping my fw interface from a directly connected host, though I have my MGT profile configured to allow ping to my internal interface.

 

I have r

...

LIC errors.png

Need assistance with Certs and Firewall

I has been years since I have done anything with Microsoft CA so I am really struggling. 

 

Here is the problem:

 

When enabling URL filtering and I am blocking a certain site that has HTTP and HTTPS, the HTTP page will present the block page, but the HT

...

Resolved! Certificate expired

Hello,

 

Received following message/alert.

Warnings

  • Certificate PA Net Root CA in shared expired on Jun 3 23:26:00 2016 GMT
  • Certificate GlobalProtect in shared expired on Jul 27 02:34:06 2016 GMT

Do we need to action any renewal? If so, kindly show the ste

...

Farzana by L4 Transporter
  • 7606 Views
  • 3 replies
  • 0 Likes

Panorama slowly driving me insane.

I'm wondering if anyone can explain this to me.

 

I've recently started working with Panorama. When I import devices I follow this process:

 

  1. Add device, and input the serial number of the device and commit.
  2. Wait for it to connect.
  3. Import device configurat
...

Panorama Certificate question

In pamorama I created a default template with basic configuration settings for all firewalls and then create a site specific template and put them both in a template stack to apply the stack to each firewall. This way the default settings apply to al

...

dstjames by L2 Linker
  • 3719 Views
  • 3 replies
  • 0 Likes
  • 24125 Posts
  • 100 Subscriptions
Top Solution Authors
Labels