This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! Failed to Fetch Packages

Getting error while executiing sudo apt-get update && sudo apt-get install -y minemeld rsyslog-minemeld rsyslog-mmnormalize Error Failed to Fetch http://minemeld-updates.panw.io/ubuntu/dists/trysty-minemeld/main/binary-amd64/packages 403 Forbidden [IP:54.XXX.36.XXX 80]

Capture2.JPG
hsoni by L1 Bithead
  • 10402 Views
  • 5 replies
  • 0 Likes

Resolved! GP Access Routes

Is there any way to negate adding a prefix to the GP Access Routes? We have an app that we don't want to change the communication path when a machine connects with GP. So if it was accessing this app through an external method it should remain that way.If the app is using address 1.1.1.1 prior to connecting with GP, then the access routes would ...

Resolved! Dropped Traffic

We have PA3000 running 7.1.10I have issue where tarffic is being droped by the Deny All rule , the last rule even though I have allowed this tarffic to come in ext zone ext zone.Also for some reason the destination seems to be Internal where as the interafce is the public one. Does any one have an explanation

Untitled.png
RC-BHF by L2 Linker
  • 5966 Views
  • 7 replies
  • 0 Likes

User ID WiFi and LAN

Hello Our organisation does not use 802.1x authentication in our environment. We have LAN and WiFi for our employees. We want to implement User ID with PA with AD domains and User ID Agent. However I could not find documentation on User ID behaviour in following scenario:Our users have laptops and they use LAN when laptops are docked into dockin...

Blank page when logging into Panorama 7.1.9

Just wondering if anyone else has come across a situation where they were unable to load the Dashboard when logging into Panorama 7.1.9; or is this a one-off issue that only we have hit? Didn't matter which browser we used (ancient version of Firefox, older version of Firefox, latest version of Firefox, older Chrome, latest Chrome) the symptoms ...

fjwcash by L4 Transporter
  • 4564 Views
  • 1 replies
  • 0 Likes

PAN-OS 7.1 Resource List

Hi, I am looking to upgrade Panorama and firewalls from version 7.0.8 to version 8.0.2. Is there a requirement to upgrade PA and all firewalls to 7.1.0 prior to moving to 8? My main concern is if i am able to manage firewalls with 7.0.8 from Panorama running 8.0.2 Many thanks Craig

PA-200 | Auto Shutdown via UPS - USB

I'm wondering if the USB on the face of a PA-200 firewall can be used with a UPS to properly shutdown the firewall in the event of a power outage? If so, how can someone set this up?

Panorama - 50 user internet usage report

Hello, I have a list of 50 users who I need to run internet usage reports for. Is there a simple way to accomplish this?I can't do group reporting from Panorama. I dont really have the time to manually run 50 seperate reports. I can't run the group report directly from the firewall as the data is 6 months old and only exists on the panorama box....

Resolved! Custom Report; 'bytes' per 'vlan'/ '/24 subnet' with ? monitor tag ?

Hi all, I have a simple 'tenanted' environment. A /24 subnet represents a tenant behind the trust of my PAN.I want a simple report that shows 'traffic' over the last calendar month of that /24.I think this is simple by applying a 'monitor tag' per subnet. And then tagging my basic permit rules that match that source condition match of that /24...

Untitled.png
mpgioia by L3 Networker
  • 7186 Views
  • 5 replies
  • 0 Likes

Screwed up management IP

So I was configuring a new PA 200 using an XML file and I screwed up the management IP. So I logged into what I thought was my new device, but was an existing already operational device and changed only it's management IP without changing default gateway and other information. So now the device is inaccessable remotely. Is there a way to SSH ...

Rule matching: left-to-right question, unexpected output in traffic log

On PA5050 running 7.1.5, in the monitor:traffic logs section, traffic that matches interzone default rule shows up as matching the first rule in the list. The first rule is configured like so:source zone: any, source address: any, user: any, destination zone: any, destination address: any, application: I picked one that is not in-use e.g. 'doc...

Shanef by L0 Member
  • 6774 Views
  • 1 replies
  • 0 Likes

Adding a Proxy ID member to IPSec Tunnel

I added a single host to an existing tunnel. Does the phase 1 portion of the tunnel need to be restarted to take effect? After I added the new proxy-id 39 - if I run show vpn flow - I see that portion of the tunnel is in "init" phase while all others are active. I tried tunning "test vpn ipsec-sa .." for that specific phase 2 instance but it's s...

palomed by L3 Networker
  • 2835 Views
  • 2 replies
  • 0 Likes

Resolved! Differentiate GP portal login(not client login) vs MGMT login

Has anyone run across issues where Radius server is having difficulty in identifying if it's a management login vs GP portal login. We are having a hard time to identify the difference, when we use Clear pass as our radius server. Little Background: A user(valid admin) uses his creds to login to the GUI. PA uses its mgmt interface to send cre...

SuryaR by L3 Networker
  • 4771 Views
  • 6 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks