General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 192 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 874 Views
  • 0 replies
  • 0 Likes

Problem downgrade PAN-500

Hi all!

 

i am trying to downgrade a PA-500 from 7.1.7 to 5.0.X.

I have downgraded to 7.0.1, but i am nor allowed to downgrade to 6.1.0, when i upload the image file it says 'PanOS_500-6.1.0 already exists', but the only images present are 7.0.1 and 4.1

...

DKanta by L2 Linker
  • 4115 Views
  • 6 replies
  • 0 Likes

Resolved! GlobalProtect protect client upgrade

Well if you saw my last post I have upgrade my PA 5050 from 7.0.12 to 7.1.9 and had a few issues with an Any vs and any in my VPN.

I am now needing to upgrade my global protect client. Currently I am on 2.2.0 and not sure what the best version is to u

...

jdprovine by L4 Transporter
  • 3371 Views
  • 4 replies
  • 0 Likes

Resolved! Ping through PBF Policy intermittently dying

I think this might be related to DoS protection somehow, but I can't find anything being blocked in any of the logs.  I'm sure I'm not looking in the right spot, though.

 

We have a normal Internet gateway (default route), and a separate point-to-point

...

fjwcash by L4 Transporter
  • 3078 Views
  • 2 replies
  • 0 Likes

Resolved! Incomplete traffic: custom appID and QoS

Hi,

 

I have traffic generated by Solarwinds NetPath probes that is tagged by the firewall as "incomplete".

 

I run a packet trace, and after the handshake, there are only TCP-keep-alive packets.  I'd like to prioritize this traffic in QoS, currently I'm

...

Sophos Central firewall rules question

My company is trying to implement  Sophos central throughout our network.


All clients need the access listed in the article below.

 

https://community.sophos.com/kb/en-us/121936

 

Currently Sophos central doesn't support the proxy solution we use.

 

what is

...

njuttner by L1 Bithead
  • 6527 Views
  • 8 replies
  • 0 Likes

Resolved! Decryption Policy Rule - Profile is None

With my new employer I'm managing a 3050 unit with a couple of Decryption Policy Rules which are configured to decrypt using SSL Forward Proxy. The Decryption Profile under Options is set to None. I can't find what the behaviour is when the decryptio

...

Resolved! Content update 709 revoked?

All firewalls automatically downgraded content version from 709 to 708. Was 709 revoked? Anybody else having the same behavior?

Anon1 by L4 Transporter
  • 5795 Views
  • 8 replies
  • 0 Likes

GlobalProtect commit fail on PAN-OS 7.0

help me please.

config ip pool for client access but commit fail

commit log message

Operation CommitResult Failed
Detailsmissing ip pool from both dynamic ip pool and authentication server ip pool for config 'default' in gateway GP-Gateway (tunnel GP-Gat...

Dent by L1 Bithead
  • 5418 Views
  • 5 replies
  • 0 Likes

Detalied url log

Hi all!

i'm new in this community and we have put in work 2 PA-3020.

I configured ELK for log forwarding.

i've search every log and i couldn't find a filed with the url theat a user is visiting. Is there a way to achieve that.

Example! Now i'm writing fr

...

Matteo by L1 Bithead
  • 3169 Views
  • 3 replies
  • 0 Likes

Internal traffic is hitting in the isp firewall

Palo alto is perimeter to customer which is connected to isp firewall.

Internal subnet traffics which are not allowed in isp/ untrust interface are hitted in isp firewall.
Routing is proper. ARP is proper in isp interface( only next hop arp is there)

Im...

  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels