This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! SSL decryption alert or log

Hi We use SSL decryption and from time to time we have issue with web sites and apps not working because we are decrypting their traffic. If its a web site that doesnt like ssl decryption most of the time the end user will get the relevant response page, but our issue is with applications or windows apps that doesnt like ssl decryption because w...

Resolved! Failed to Initiate Phase 0 (ID population)

Hi community, Does anyone already saw this commit error and knows how to solve this issue without doing a simple reboot? PAN-OS 8.0.7, Apps&Threats 773 Regards,Remo

20180203_185654.png
Remo by L7 Applicator
  • 8215 Views
  • 1 replies
  • 0 Likes

Commit limits

Hi Guys, We are running scripts to push configurations into the firewalls. Everything is done via CLI and with set statements (I know that it is odd, but that's the way it is). Does anyone know are there any limits on the configuration size because sometimes we have config synchronization problems with the secondary box? Cheers

ICMP gets dropped by DEFAULT DENY ANY ANY

Source IP: x.x.172.230Source Zone: int-fw Destination IP: x.x.20.50Destination Zone: DMZ Requirements: SRC and DST IPs should be pinged bi-directionally. Scenario:- I've allowed the traffic using ICMP, ICMP-0, ICMP-8, PING bi-directionally but still unsuccessful- Upon checking the logs, I can see that from SRC ----> DST is allowed using the R...

mcjyrnn by L1 Bithead
  • 9572 Views
  • 11 replies
  • 0 Likes

Always on/Pre-Logon GP and Windows logon time

Does anyone have any tweaks or suggestions that might improve the windows logon time when GP is configured as pre-logon always on? Our users have gotten used to waiting sometimes up to 5 minutes after logging in before they see their windows desktop. The only way we have found to alleviate that is to set GP to on-demand (not an option) or uninst...

hshawn by L4 Transporter
  • 6136 Views
  • 6 replies
  • 0 Likes

Trunking a new switch existing PA (Active/passive)pair

Hello Everyone, I am having some trouble with trunking. Below is our current setup: PA pair(vlan 48---x.x.48.254) ------core switch (vlan 48....x.x.48.1) for internal access (trust zone). we have a static route on PA---any traffic to internal network, should be pointed core switch (vlan 48....x.x.48.1) .Similarly we have default route on core sw...

[PANORAMA][ERROR] Can't use export or push device config bundle feature

Hello, I got issues using the feature : Panorama > Setup > Operations > Export or push device config bundle.I try to erase the local configuration of a PA-850 and push the Panorama configuration on it. I got this error message when I click on push & commit : I would appreciate some help on this, does anyone already saw this error ...

Capture.PNG

Need help on VPN PA firewall to IBM cloud VPN

All, I am new to Palo Alto World Really need your Help in understanding how can i create the VPN for the below 1. IBM cloud subnet only 1 subnet so thats okay. 2. Multiple subnets behind my PA firewall, my question is how to NAT them all to go out? IBM just confirmed that they are using ROUTE based VPN , so i believe i do not need to define prox...

SNMP on Active-Passive HA Cluster

Hello, I have SNMP configured and working on the Active member of my HA cluster. i need to set SNMP up on the Passive member, i have made the changes and saved config but it is not working, do i need to commit the config? if so, would this cause any unforseen issues as i am doing a config commit on the Passive member where we normally only com...

GlobalProtect Connection Problems

Hi All I have had to re-install a user client Global Protect Agent 2.3.3-5 as he couldn't connect, after re-installing he still cant connect and getting a error message off: #“(T10576) 02/01/18 13:55:00:745 Debug( 226): CPanSocket::onConnect - return error code = 10061." he is the only one in the office that is getting this, everyone else can c...

ptotham by L0 Member
  • 6589 Views
  • 2 replies
  • 0 Likes

Decryption policy options explanation required.

Hello Everyone, I am reading about decryption policy and have some questions in my mind, so looking for some answers. 1- In order to apply the decryption profile, do I need to have action set to decrypt ? 2- what is the advantage if I have a decrypt policy with options set to:a) Action: No decrypt (with no profile) <-- is not it same as if it...

Xtreme by L1 Bithead
  • 3493 Views
  • 5 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks