This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

7.1 Dataplane CPU Utilization

I'm curious how many people out there have had high dataplane CPU utilization ever since updating to 7.1? We updated to 7.1 so that we could decrypt additional ciphers and ever since updating we've had abnormally high dataplane CPU utilization which does not make any sense to me as we are nowhere near the stated maximum specifications on our 50...

Impact of Rack Server Placement on Palo Alto Networks Firewall Performance

Hi everyone, I’m currently setting up a new data center and am wondering about the impact that rack server placement might have on the performance of our Palo Alto Networks firewalls. We’re using a mix of physical and virtual firewalls, and I want to ensure that we’re optimizing their performance as much as possible. Specifically, I’m curiou...

Arbitrary commands issue on ansible

Hi; While Executing Arbitrary commands like (eg: show lacp aggregate-ethernet all, show chassis status ) via ansible playbook its not getting exact output as we getting in paloalto console output some attributes are missing, I am using the paloaltonetworks.panos.panos_op modules for generating the ansible report. Is the any other spe...

URL Filtering issue

Hi All, So i'm trying to whitelist a site that was tagged as 'parked' by PAN-OS. i added this to a custom URL category, and configured the URL Filtering profile to allow/allow. The site is still getting blocked. To get around this, i filed a request to reclassify the site(to be fair, the update was very quick). This concerns me, as a a lot...

Negating an Argument for XML API Query

I am essentially trying to query the XML API for the active firewall to grab out operational logs using the below query except I would like to NEGATE the application so that I am grabbing out the logs that do not include that application type. Right now as it is written below, I am grabbing out ONLY the logs with application type "example-applic...

Palo Alto and Aruba Clearpass integration

Can someone please point me in the direction of any documentation for integrating PA firewalls with Aruba Clearpass. Understand Clearpass has a direct path into the API without the need for any programming?

jlucking by L0 Member
  • 23564 Views
  • 9 replies
  • 1 Likes

GUI not responding

Hi All! after logging in the GUI not works anymore, i tried to restart the web service via CLI using the command 'debug software restart process web-server', but nothing changed. Can anyone give me some tips? Thank you!Regards,Daniele

DKanta by L2 Linker
  • 23209 Views
  • 4 replies
  • 1 Likes

getting more global counters through SNMP

there are a bunch of counters available through SNMP, for example the amount of active sessions at a specific moment PAN-COMMON-MIB::panSessionActive.0 = INTEGER: 2 I am looking for the overall amount of sessions created on the firewall, with the intent to graph that in Grafana. This is reflected in the global counters: > show counter global ...

frigault by L1 Bithead
  • 1302 Views
  • 2 replies
  • 0 Likes

PA410 Version: 10.2.7-h3 does not send logs to Panorama

Hello, after upgrade to version 10.2.7 h3 the Pa410 does not send logs to panorama, I have tried several versions but in many of them it does not do the autommit because there are bugs recognized by Paloalto. Do you know any stable version for this? Thanks a lot Regards

Alpalo by L4 Transporter
  • 6432 Views
  • 14 replies
  • 0 Likes

Resolved! HA Link Monitor Issue

Hi everyone! I am having some confusion on HA Link Monitoring and Failover. I did exactly the same thing with video courses and Palo alto document guide but it still doesn't work For context, i am monitoring my eth1/2 and eth1/3 for failover. So i shut down the G0/0 interfaces of the routers directly connected to them and still there's no fail...

renzanjo11_0-1725417374901.png
renzanjo11_1-1725417398285.png
renzanjo11_2-1725417418512.png

Difference between 2FA certificate configuration methods

Hi folks - very grateful for some support on this one. I've been led to believe that establishing 2FA on GlobalProtect using credentials and certificates as the authentication methods requires setting up a certificate profile and selecting "No" on the setting "Allow Authentication with User Credentials OR Client Certificate". My questions is, sh...

Port fowarding from internet to inside server

I am trying to setup port forwading from spacific internet IPs to a server inside the firewall. This is for RDP access. We are using port 9999 to hit the firewall and translating that to 3389. Here is the NAT and Security policies I have. When I look in the logs it looks like it never hits the security rule and it says the application is incom...

RayWebster_0-1725379347129.png
RayWebster_1-1725379392373.png
RayWebster_2-1725379510648.png
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks