General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Strange system error messages

Folks. I have a pair of 3050's in a HA cluster, and recently I'ver been noticing some weird messages ont he system log on the primary. I happened to log into the secondary the other day, and say a heap more. has anyone seen messages like the following Failed to upload the new HA URL file to RAM.Failed to upload the old URL file to RAM,Starting w...

darren_g by L4 Transporter
  • 5860 Views
  • 5 replies
  • 0 Likes

Resolved! SSL/TLS vs. Chrome [missing_subjectAltName]

I'm trying to get rid of the warning when I open the PA GUI from Chrome. I'm getting the following warning:This server could not prove that it is 192.168.10.4; its security certificate is from [missing_subjectAltName]First of all, IE is fine, no errors! I have generated the certificate and imported it as my trusted Root CA:I have also created a ...

cert import.JPG
Hwinter by L2 Linker
  • 9842 Views
  • 2 replies
  • 0 Likes

OSPF annomoly

Hi I have OSPF setup on an interface and a policy that allows OSPF from any to any . But I see a lot of aged-out / unknown log entries and some are with 0 bytes is this normal .. OSPF seems to be stable, but it very strange ..

URL Link Translation possible?

Hello folks! We have Microsoft ISA 2006 server that we use as a web proxy (I believe the right term) to proxy ssl communication to/from our internal RSA server. Our PA 3020 device does NAT of our public IP to this ISA internal IP and ISA. Seems like this ISA server is using a Link Translation feature that translates the external/internal URLs ...

URLfiltering.jpg
OMatlock by L4 Transporter
  • 1909 Views
  • 1 replies
  • 0 Likes

VM-Series on Vmware Workstation Pro 12

Hi, I am trying to deploy a VM-Series appliance in a lab environment using VMWARE workstation and GNS3.The interface however don't show up. show interface hardware is empty.I have configured in GNS3 to use VMXNET3. And also verified the vmx config file is using this. Example config settings vmxf file. ethernet2.vnet = "VMnet4"ethernet2.connec...

RELFDM by L0 Member
  • 2505 Views
  • 1 replies
  • 0 Likes

iSSUE Enabled UsedID agentless in Palo Alto

Hi Team, We configured and using UsedID on our policy. 1 issue i've encountered is sometime PA can't resolve the UserID assigned for specific address. This happens only selective user and other user are fine.Question are:1. What would be the issue when PA can't resolve or just show unknown userid on logs?2. How to trouble and verify whether it's...

Resolved! Can't translate password

Hello, We are unable to commit changes on astandalone PA-200 as is shows the error message. Can't even create local accounts on the firewalls. Anything which uses a password generates this error. Any thoughts on this? Thanks in advance.

Error.png
Farzana by L4 Transporter
  • 6153 Views
  • 2 replies
  • 0 Likes

SSL Decryption for Chrome Browser

Hello, Below is our Decryption Policy. Using latest Chrome version.Security certificate used by the Palo is from the Windows domain PKI and is already implicitly trusted as this testing is from a domain connected Windows 10 device over Ethernet.It is working fine for IE but in Chrome it is showing like this: If I set the URL Category of Compu...

Decryption.jpg
SSLDecryption.jpg
Farzana by L4 Transporter
  • 3708 Views
  • 2 replies
  • 0 Likes

Resolved! Query on GP client password

Hello, Is there a way for the Global Protect Client on Windows machines to not save the client password between session? Thanks in advance.

Farzana by L4 Transporter
  • 3462 Views
  • 2 replies
  • 0 Likes

Resolved! Not licensed for vsys id 2

Anyone run into this one? I have a TAC case open as well.Receiving the following error on a 3060 cluster when trying to add a 2nd vsys. This is not being created on panorama, this is directly on FW01. PAN-OS-7.1.10 Error: vsys2 'vsys2' is invalid. Not licensed for vsys id 2

vsys-pic.png

Resolved! RIYADH

HELLO EVERYONE !! I GOT GENERAL QUESTION ABOUT ACC RISK FACTORIT REACHES 4.0DOES THIS WILL MAKE THE PALOALTO GO SLOW ? AND WHAT IS BEST VERIFIED APPLICATION THAT I SHOULD ADDSO IT CAN LOWER THE RISK . IF YOU HAVE A LIST THAT WOULD BE HELPFUL THANK YOU 🙂

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels