General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Join Us for a Tech Deep Dive Miniseries!


Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.


Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real


jforsythe by Community Team Member
  • 3 replies

User-id not updating mappings fast enough

We have 2 user-agents deployed that read the AD logs and the PA7050's connect to the user-agents. The agents are running 6.0.7-10 and the PA7050's running 6.1.4.

We are having a problem where mulitple machines across various networks are using a "gene


Temperature sensor in PA-4020

Hi guys,


Is there anybody, who has PA-4020 with 6.1.x(perfect if it will be 6.1.5  )? I need some help.
First, could you please execute a command:
> show system environmentals thermal
and share the output?


Secondly, ask your box via snmp:
snmpwalk -v2c


faust by L1 Bithead
  • 2 replies

Resolved! Block known bad TLDs?

My CISO want's to block known bad TLDs (such as .zip or .review) in our Palo. I know how to block specific url(s), but is there any way to block an entire TLD?


I'm running into issues blocking *.zip since it will also block legitimate URL traffic tha


New dates not available on reports-

When I go to monitor reports and click a report- I can't select any date after July - I created a custom report and can report on information that way but the included reports don't seem to be working.  Any suggestions?

Migration Cisco FWSM 4.1 to PAN

I have run a config through the migration tool and I have noticed the following application generate warnings-


icmp-  I understand I change this to- ping

ipsec-esp-  I have no idea what this should be changed to?

gre(generic routing encapsulation)-  No


Resolved! Default Behavior of QoS

Hello All,
Quick question on the default behavior of QoS on the firewalls.  Do interfaces on the firewall assume the QoS profile of "default" if I don't specify a QoS profile for the interface?  The heart of my question is if I change the guarenteed a


dan731028 by L3 Networker
  • 4 replies

6.1+ update stops tagged interfaces from working

I tried updating a PA3050 HA active/passive setup from 6.0.10 to 6.1 to eventually go to 7.
The update works for both devices, everything seems to be working like it should, except for the tagged subinterfaces of the aggregated interfaces. They simply


Resolved! IP address not displaying correctly

I created a user account that so that the helpdesk can monitor the traffic and threate logs on the palo alto but not make any changes. But when I open up the traffic and threat detail instead of showing the exact IP address for the source and destina


jdprovine by L4 Transporter
  • 3 replies

Resolved! Random denial

What would cause traffic that is allowed through one rule to be denied by a rule below it. Shouldn't it just go through the rule allowing it and not even go any further.

Odder even still is that traffic is not always denied sometimes it does pass thro


jdprovine by L4 Transporter
  • 16 replies
Top Liked Authors