This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4120 Views
  • 0 replies
  • 0 Likes

[PANORAMA][ERROR] Can't use export or push device config bundle feature

Hello, I got issues using the feature : Panorama > Setup > Operations > Export or push device config bundle.I try to erase the local configuration of a PA-850 and push the Panorama configuration on it. I got this error message when I click on push & commit : I would appreciate some help on this, does anyone already saw this error ...

Capture.PNG

Need help on VPN PA firewall to IBM cloud VPN

All, I am new to Palo Alto World Really need your Help in understanding how can i create the VPN for the below 1. IBM cloud subnet only 1 subnet so thats okay. 2. Multiple subnets behind my PA firewall, my question is how to NAT them all to go out? IBM just confirmed that they are using ROUTE based VPN , so i believe i do not need to define prox...

SNMP on Active-Passive HA Cluster

Hello, I have SNMP configured and working on the Active member of my HA cluster. i need to set SNMP up on the Passive member, i have made the changes and saved config but it is not working, do i need to commit the config? if so, would this cause any unforseen issues as i am doing a config commit on the Passive member where we normally only com...

GlobalProtect Connection Problems

Hi All I have had to re-install a user client Global Protect Agent 2.3.3-5 as he couldn't connect, after re-installing he still cant connect and getting a error message off: #“(T10576) 02/01/18 13:55:00:745 Debug( 226): CPanSocket::onConnect - return error code = 10061." he is the only one in the office that is getting this, everyone else can c...

ptotham by L0 Member
  • 6527 Views
  • 2 replies
  • 0 Likes

Decryption policy options explanation required.

Hello Everyone, I am reading about decryption policy and have some questions in my mind, so looking for some answers. 1- In order to apply the decryption profile, do I need to have action set to decrypt ? 2- what is the advantage if I have a decrypt policy with options set to:a) Action: No decrypt (with no profile) <-- is not it same as if it...

Xtreme by L1 Bithead
  • 3434 Views
  • 5 replies
  • 0 Likes

Determining failed administrator interface logons from syslog

Hello!I'm running into an issue. I would like to record failed logons to the administrator interface via syslog but the log format and contents of the logs appear to be exactly the same as those when a user performs a failed login to GlobalProtect Client VPN. Therefore I am getting a bunch of false positives.Has anyone had any luck with this?

Jimkoo by L0 Member
  • 2161 Views
  • 1 replies
  • 0 Likes

Traffic in interface tunnel

Hi, I have enabled QoS in order to limit a tunnel interface to maximum badwith to 50Mbps. QoS is well-applied but the current BW value is not being showed in QoS statistics. What ways are there to know the amount of traffic that goes in a moment through this tunnel to know if it exceeds 50MB??????? Except QoS statistics.....

Resolved! syslog forwarding

how can i forward exact below information to Syslog server ? > show log userid1,2013/03/28 12:53:05,001701000225,USERID,login,12,2013/03/28 12:53:05,vsys1,172.17.128.92,plano2008r2\administrator,test,0,1,2700,0,0,active-directory,unknown,1,0x01,2013/03/28 12:53:05,001701000225,USERID,login,12,2013/03/28 12:53:05,vsys1,172.17.128.92,plano2008r...

Resolved! HA Active/Passive upgrade question

Hey PA Guru's! I have a question I haven't really seen on the KB's and documentation on HA upgrades, and wanted to get some insight. I currently have a pair of PA-3050's we're looking to upgrade, and i've reviewed the docs on the recommended procedures here: https://www.paloaltonetworks.com/documentation/80/pan-os/newfeaturesguide/upgrade-to-...

Power failure on PA-7000

The PA-7000 Hardware Guide specifies they minimum number of active PS to provide enough power for a chassis depending on the type of power and number of NPCs installed.For example, if the PA-7050 chassis is powered via 120V AC and has 6 NPCs installed it requires at least 3 PS functioning to provide full functionality. So, if the chassis is powe...

MS-ISAC Soltra Feed?

Through MS-ISAC we are able to consume a Taxii feed (I believe it originates as a Soltra Edge feed). Currently this is going straight into my palo as an EDL. I would like to bring it in through minemeld so I can add other feeds and take advantage of the other features in MineMeld. When I look at prototypes for Miners, I don't see any that r...

kevink by L0 Member
  • 7826 Views
  • 4 replies
  • 1 Likes

Panorama VM in HA and log forwarding via syslog

Panorama VM in HA setup and panorama mode Panorama A: primary-activePanorama B: secondary-passive Both have a local log collector and both are added to "default" log collector group. In this log collector group, log forwarding via syslog is configured. The firewalls are configured to log to Panorama A and Panorama B. This works fine, logs are fo...

Anon1 by L4 Transporter
  • 2218 Views
  • 1 replies
  • 0 Likes

GlobalProtect on new MAC pc

Hello, We have installed the Global Protect software (version 4.0.5-8) on a new MAC computer (High Sierra version 10.13.3). However the Connect button is greyed out along with a number of other buttons. The only available buttons are Show Panel / About / Help / Welcome Page / Notifications and Collect Logs.If I open the panel it has the correct ...

Farzana by L4 Transporter
  • 2198 Views
  • 2 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks