This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4109 Views
  • 0 replies
  • 0 Likes

Resolved! User-ID Agent 8.0.2-20 - Auto Update not working

Hello!I am having an issue with Auto Update not working. I have the agnets installed on three seperate servers and have had to hand-jam the rest of the Domain Controller's in order to get them connected. I've only put in 1/3 of them but was wanting the Auto-Discover to do the rest of the work. I have the PA AD account installed on the Primary DC...

Roshawn by L2 Linker
  • 6303 Views
  • 11 replies
  • 0 Likes

BGP

hello i am new to palo alto i recently configured bgp on my palo alto pa 500 device and my bgp peer is getting connected and then after a minute it gets disconnected and the bgp state becomes active. also i am using md5 key for authentication. could you please help me with a possible solution or reason. thank you

Customize email alerts

Hi,I question is it possible to do customize the alarm email which I activate it in the log forward. Thanks a lot for your help.ThanksMartin

Auzi by Not applicable
  • 2768 Views
  • 2 replies
  • 0 Likes

Resolved! Best practise For TAP Mode

Hello Brothers, Plz i want make a POC with one of our clients, but i need to know what's th best practise for putting the PaloAlto in TAP mode !!i mean:1-what's the rule policy that i must create ?? must enable all security profile ?2-must make dycryption rule ?3-Wich elements i must focus on for the best practise and give the best report to the...

Resolved! Copy group of apps from one device to another - small CLI problem

Hello I'd like to copy one application group from Unit1 to Unit2.On Unit one:configure run set cli config-output-format set show application-group WiFi-appsIt gives me somethning like:set application-group WiFi-apps members [ adobe-update apple-push-notifications apple-update avast-av-update avg-update dropbox eset-update facebook facetime flash...

_slv_ by L4 Transporter
  • 2802 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect, XAuth client, issues with routing multiple subnets

I'm probably missing something simple, but I can't figure out what. I have GlobalProtect Portal setup on the datacentre (DC) firewall. I have GlobalProtect Gateway setup on the office firewall, with XAuth enabled. I can connect to the Gateway using the vpnc client on a Linux station and everything works. I get an IP, I can access things on the...

fjwcash by L4 Transporter
  • 6042 Views
  • 8 replies
  • 0 Likes

Resolved! Failed Install dynamic update

Good Morning, Last week, one of our Firewall had a power failure, after recovering, we have seen that dynamic updates are downloaded but not installed correctly I have reviewed the "less mp-log ms.log" file and you see the error is as follows: rpmdb: Program version 4.3 doesn't match environment versionerror: db4 error(-30974) from dbenv->ope...

Captura.jpg

Resolved! autolock

It was recommended that we turn on autolock so that people would not step on each other commits so we did. We had a non admin user create a filter, it requites a commit and he has no admin rights to commit. So the firewall became locked and no one could commit the change - anyone run into this before? If you have how did you deal with it. We hav...

jdprovine by L4 Transporter
  • 4640 Views
  • 5 replies
  • 0 Likes

Nodes polling error

Hello somewho have an idea? Installed Minemeld on an fresh Ubuntu 14.0.4 like the manual installation guide. Import the Office365 configuration All Nodes got an SSL Error message see below 2017-04-19T12:45:54 (22890)basepoller.hup INFO: office365_O365 - hup received, force polling2017-04-19T12:45:54 (22890)basepoller._huppable_wait INFO: hup ...

Resolved! How does URL Filtering Works

Hi Guys, I have slight confusion about the working of URL filtering i.e once u define the URL Filtering Profile on any rule how does the URL or any website gets catogorised,i mean how does the PA knows that this website belongs to this category. I know that there is a download of URL filtering DB from PA periodically,so is it the a particular we...

mahmoodm by L3 Networker
  • 5915 Views
  • 5 replies
  • 0 Likes

User activity Report

Hello allis it possible to put timestamp in user activity report for chronology?I am checking the Including detailed browsing but i can not see in the report which user or group of users at what time went into some resource

Radmin_85 by L4 Transporter
  • 1779 Views
  • 1 replies
  • 0 Likes

Firewall working as proxy for mail server

I have customer using TMG holding public ssl certificate for mail . The mail server doesnt have ssl certifcate.Customer wants to eliminate TMG and using palo. Can palo hold the cert to authenticate the ssl . Mail serversits behind the palo in trust zone.So customer will login to https://customer_mail.com. which has public of the palo. Palo holds...

Global Protect - two portals same firewall

Hello all, Here is my question. Can I configure on the same firewall one global protect profile to only authenticate users based on certificates and a separate profile to authenticate users based on their AD credentials? Currently I have authentication working with AD but I want to create a separate profile for certificate authentication. Each p...

Resolved! Global Protect with multiple portals

Is it possible to have more than 1 Global Protect portal and gateway on a single appliance? We use tunnel all mode with a route of 0.0.0.0/0 for all of our users. However today a vendors need access but want to use their own systems at the same time. In this case I would not want to tunnel everything, only our private subnet.

nthen by L3 Networker
  • 8737 Views
  • 4 replies
  • 2 Likes

OCSP App-ID fail

Hello,is anyone using ocsp as single app in a rule ? It's sometimes failing to match, seen as "web-browsing" although on very easy to recognize URLs such as ocsp.comodoca.com. Quite annoying when you debug a third-party software failing to setup because of this but only mentionning "cert chain failed".App version 752-4343 on v8.0.5.thanks !

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks