Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
jforsythe by Community Team Member
  • 27 Views
  • 0 replies
  • 0 Likes

Problem wildfire logs after upgrade fw from 6.1 to 7.1

Hi all

i have 2 firewalls managed by panorama, everybody with 7.1.5 recently upgraded from 6.1.

I have a wildfire public cloud configured for an smtp rule to check any file contained in every mail.

A wildfire analysis object profile:

 

 

 

 

 

After the upgra

...

wildfire.JPG

Routing issue

Hi,

 

We are expecting a routing problem. Our Pa is learning router from eth1 from OSPF, so the VoIP traffic is going through this interface properly, on the another hand we have a VPN configured in another ISP just in case OSPF goes down. the problem

...

Captura1.JPG

Disable Hardware Offload

Hi All,

 

Whats the purpose of "Disable Hardware Offload" in Palo Alto Firewall ?

 

Any traffic that is offloaded to the field-programmable gate array (FPGA) offload processor is also excluded, unless you turn off hardware offload.

 

Can anyone please expl

...

Usage of Security Policy in Palo Alto Firewall

hi All,

 

I am bit confuse of the usage of rule no 2 and 3. Eventually they will deny the traffic. But which two benefits are gained from having both rule 2 and rule 3 presents? Any clarification please.

A.    A report can be created that identifies unc

...

PA1.JPG

PAN-OS 8.0 Updates

I've recently upgraded a lab 200 to 8.0 from 6.1.4.

 

After upgrade I couldn't get it to connect out for Software or Dynamic updates, getting an error saying no connectivity basically.

 

I saw the changes about where communication via the mgmt interface

...

Resolved! SIP aged-out session being left in the DISCARD state

Hi Guys,

 

Has anyone come across this when the aged-out SIP session being left in the DISCARD state and the only way you can fix the issue is to clear the session with > clear session id 380025 command.

 

xxxxxxxxxxxxxx(active)> show session all filter

...

Resolved! How do you do validation testing?

Hi all,

 

I'm wondering if any of you do your own validation testing of security patces for PAN-OS and vulnerabily signatures.  Example being, do you confirm your edge is vulnerable to a specific CVE, and then after patching do you confirm it's no long

...

Bug in GlobalProtect client

Hello,

 

Global Protect client MSI is not installed correctly. Uninstall string is not correct :

 

msiexec /I should be msiexe /X

 

 

Silent uninstall of current version (3.1.4-7) in my case : MsiExec.exe /X{6AC613AB-3F53-424B-BED2-570C7869F30F} /QN

 

Latest

...

Resolved! Help issue, wildefire dosn't upload file anymore

Hi all

i have this little issue.We have activated wildefire on smtp to control and upload any permitted files to cloud for analysis. It started well and for a 6 days it sand files ad after malicious submissions it started to block files.

But the last 2

...

High Management Plane CPU

Hello, good morning

 

I am experiencing a High Management CPU situation (PAN OS 7.1.7)

What is this mongod process?

 

How to solve this problem?

 

Thanks

 

Screenshot_1.png
Frazão by L1 Bithead
  • 4700 Views
  • 4 replies
  • 0 Likes

Resolved! GesoTrust Intermediate Certificate

Hi,

 

We're having some issues with the Intermidiate certificate that we're using in one of our servers when trying to connect to it passing trough your firewall (installed in our client's system).

 

Our certificate provider is GeoTrust Inc. and I've bee

...

Resolved! special subscription for site to site

Hey guys!

 

We want to do a site to site IPsec vpn between two Palo Alto firewalls.

Do we need a special subscription for site to site vpn?

Global Protect Portal or Gateway license?

 

Thanks!

MPI-AE by L4 Transporter
  • 1606 Views
  • 1 replies
  • 0 Likes
  • 23584 Posts
  • 107 Subscriptions
Labels