General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Problem installing PanOS Virtual Machine

I;ve downloaded the latest PanOS (both 7.1.14 and 8.0.6) OVA files. Verified the sha256 hash matches. When I go to create a VM under ESX 6.5 via the web interface, the vm creation hangs when trying to load the OVA content. No errors, it just sits there (i have let it run for over an hour). Since this is our first VM, I can't open a suport ti...

Resolved! Purpose and functions of VM Information Sources?

I trying to understand what gain we have from having our vCenter server monitored by our PA 3020 firewall?I reading about it here, but not understanding it.https://www.paloaltonetworks.com/documentation/71/pan-os/web-interface-help/device/device-vm-information-sources We are recently upgraded to vSphere 6.5 and a new vCenter server that I need t...

PAvCenter1.jpg
OMatlock by L4 Transporter
  • 4894 Views
  • 3 replies
  • 0 Likes

Minemeld eth0 loses connectivity

Installed Minemeld on Ubuntu Trusty in ESXi with no issues; however, soemtimes when navigating within the Minemeld gui, I lose network connectivity. The only way to fix thus far is to ping the gateway from the console. Any ideas what I may have done wrong?

Resolved! Please provide Folders in GUI for clubbing policies

Please provide ability to create group or folders in GUI so that we can group or club inter-related policies. For eg. If I provision a new application and I need to create a few policies for that application, I can create a folder and create those policies in the folder. When I remove the application, I can delete the folder and all the related ...

monavy by L0 Member
  • 3694 Views
  • 3 replies
  • 0 Likes

Most secure way to validate laptop, desktop and mobile devices?

I'm new to networking in general and looking for the most secure way to ensure those joining our network actually belong on the network. We have a moderate hierarchy of users with a fairly even mix of desktops, laptops and mobile devices. What I'm looking to achieve:- Only specific devices are able to connect to network (whitelist specific, deny...

Newbie - Unable to Access Web GUI

A very good day to everyone, I hope everyone is doing Great, I am a Newbie and have just done the following - 1) Imported PA-VM-ESX-8.0.0.ova File into VMWare Workstation2) Started VM3) Logged into VM4) Set IP of Firewall with these commands configure set deviceconfig system ip-address 192.168.1.1 netmask 255.255.255.0 default-gateway 192.168.1...

Application Default Risk Factor---Exportable?

Hello all!I recently finished a migration in which everything went perfect. However, I'm now trying to find out how to export the Default Risk Factor of the applications so that I can compare to the build on the original firewalls as the risk factors had been customized. Is there a CLI command or some other way to export the risk factor config?

Roshawn by L2 Linker
  • 2421 Views
  • 2 replies
  • 0 Likes

configuration report

has anyone tried to set up a custome report that shows/alert or lets you know when someone has made a change to the configuration? Or if you have your own home grown method that you use to audit configuration changes.

jdprovine by L4 Transporter
  • 8555 Views
  • 13 replies
  • 0 Likes

Resolved! MineMeld services not initialized after install

I've tried manually installing MineMeld and using the ansible template but the services do not seem to be initialized. Is there a step missing in order to get this completed? Same issue with Ubuntu 14 and 16.

csopel1 by L1 Bithead
  • 6456 Views
  • 4 replies
  • 0 Likes

Resolved! Changing SSL Certificate on the MineMeld Docker container

Team, Does anyone have some guidance on changing out the SSL certificates on the MineMeld Docker container? Should we modify the dockerfile to include a COPY command? Is there a way to just shunt it in via mapping an additional VOLUME during the "docker run"? Thanks again for an awesome tool! Regards, Nasir

nbilal by L3 Networker
  • 9716 Views
  • 2 replies
  • 0 Likes

PAN 3020 OS Upgrade

I have PAN-3020 Running on version 7.1.4-H2, Can you please assist me which version should I upgrade ?Have anyone tried 7.1.14 or 8.0.6. which one is more stable version ?

Mragheb by L1 Bithead
  • 2046 Views
  • 1 replies
  • 0 Likes

Download slow passing through PA

Hi All! i have this problem: when customer downloads, it is very slow, with isp he bypassed the PA device and it was faster.I created a new rule without any security profile to verify if it was caused by them, but customer says it is the same (and it could be slower). QoS is not enabled. Do you have any suggestion about this problem? Some functi...

DKanta by L2 Linker
  • 3170 Views
  • 2 replies
  • 0 Likes

ipsec tunnels freezing in PANOS 8.x on active passive configuration , when failoveris needed

- We have been having issues with VPN tunnels freezing between PA's on different sites; since PANOS8.x when a failover is done in an active - passive configuration. Current workaround is to enable tunnel monitoring with failover action. This was not needed in PANOS 7.x, for these kind of situations. the failover works for all the rest of ongoi...

Resolved! User-ID Agent 8.0.2-20 - Auto Update not working

Hello!I am having an issue with Auto Update not working. I have the agnets installed on three seperate servers and have had to hand-jam the rest of the Domain Controller's in order to get them connected. I've only put in 1/3 of them but was wanting the Auto-Discover to do the rest of the work. I have the PA AD account installed on the Primary DC...

Roshawn by L2 Linker
  • 6554 Views
  • 11 replies
  • 0 Likes

BGP

hello i am new to palo alto i recently configured bgp on my palo alto pa 500 device and my bgp peer is getting connected and then after a minute it gets disconnected and the bgp state becomes active. also i am using md5 key for authentication. could you please help me with a possible solution or reason. thank you

  • 24401 Posts
  • 123 Subscriptions
Top Solution Authors
Labels