This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 437 Views
  • 0 replies
  • 2 Likes

Resolved! Show hit count in CLI

I was searching this forum and official documentation, but I can't find the following:

Is there equivalent to Cisco ASA "show access-list acl_name" command in the PAN-OS CLI. I am looking for the command that will show hit count for every configured

...

Resolved! Point to site VPN on pan 0S 11+ (Client to remote VPN server)

I remember reading some where Palo Alto firewalls works like a client to access remote VPN servers 

 

eg I can setup the PALO to access a OpenVPN server and give access to user on my palo managed local network to access that remote resource, than use

...

din100 by L3 Networker
  • 1079 Views
  • 3 replies
  • 0 Likes

Impact of run tcpdump on every interface.

Hi,

 

We need to execute tcpdump in PA-VM for a specific reason. We need to TCPdump data from firewalls for 15 minutes at various intervals; there is no specified source or destination. When we run tcpdump from every interface, we want to know if it

...

Resolved! Confirming Upgrade Path

Hello everyone, I just wanted to clarify/confirm the proper upgrade path to latest preferred 11.0.2-h2.  We are currently on version 9.1.12-h3.  From what I have gathered, would the below steps be the proper steps and path?

 

1.  Download and install

...

Panorama Log Collector Device Replacement

Hi There,

  One of the cluster's PA firewalls was faulty and replaced with the RMA unit. In the environment, we have a Panorama setup as a log collector. As the policy packages are not managed in Panorama, is modifying the faulty device serial number

...

User ID agent going to non- AD servers

Hi,

We have a userid_agent installed on our server, our security team noticed the excessive session denies between the userid agent server going to other non-AD servers in our azure firewall, can anyone help me confirm if this traffic from our userid

...

Daryl_Cruz_1-1706767342887.png

Custom Report not able to see last month report

Hi 

 

can anyone assist me with the document how to check what went wrong with the report as we generate report last month but only appears recent logs

 

FYI, we have done generate report monthly previously without issue .

 

we need to know where we

...

Global Protect to Manage 100+ FW VPNs

 Does anyone have any good redirects to information about how to manage an enterprise of PA FW's using Global Protect? I'm under the impression that Global Protect is primarily just for use of remote clients. I thought there was a way to use Global P

...

Resolved! Dynamic Update License

Hello There,

  I'm currently testing a PA feature for deployment. I need to update the dynamic updates before I upgrade the PAN-OS to the desired version. If I'm not wrong, the license is required for the offline dynamic update installation. I hope a

...

Source NAT question

hello,

Is it possible to make NAT source by specifying the source port on which I appear for the remote server?

let me explain :

 

I am located in an inside zone and I would like to go to a specific zone that we will call "partner"
I would like to acc

...

CAMIEG by L1 Bithead
  • 1228 Views
  • 6 replies
  • 0 Likes

Resolved! IKEV2 Errors in Log

On my PA-500 and PA-820's when I have a IKEV2 tunnel I tend to see this alot.  Both of these are running 8.0.10

 

'IKEv2 SA negotiation is failed. received notify type TS_UNACCEPTABLE

 

Trying to figure out what is causing this.  Anyone have any ideas

gzygadlo by L1 Bithead
  • 39374 Views
  • 5 replies
  • 0 Likes

Urgent Updates: PAN-OS Expired Certificates

Hi everybody,

We have trying to update or upload an update for our NGFW Palo Alto 220 on the November 2023 advisory. But when we logged to our Customer Support Portal and try do all the recommendations, we had trouble in the pre-last step which says:

...

Buzachi by L0 Member
  • 1140 Views
  • 4 replies
  • 0 Likes
  • 23700 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks