This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

PA-200 | Auto Shutdown via UPS - USB

I'm wondering if the USB on the face of a PA-200 firewall can be used with a UPS to properly shutdown the firewall in the event of a power outage? If so, how can someone set this up?

Panorama - 50 user internet usage report

Hello, I have a list of 50 users who I need to run internet usage reports for. Is there a simple way to accomplish this?I can't do group reporting from Panorama. I dont really have the time to manually run 50 seperate reports. I can't run the group report directly from the firewall as the data is 6 months old and only exists on the panorama box....

Resolved! Custom Report; 'bytes' per 'vlan'/ '/24 subnet' with ? monitor tag ?

Hi all, I have a simple 'tenanted' environment. A /24 subnet represents a tenant behind the trust of my PAN.I want a simple report that shows 'traffic' over the last calendar month of that /24.I think this is simple by applying a 'monitor tag' per subnet. And then tagging my basic permit rules that match that source condition match of that /24...

Untitled.png
mpgioia by L3 Networker
  • 7278 Views
  • 5 replies
  • 0 Likes

Screwed up management IP

So I was configuring a new PA 200 using an XML file and I screwed up the management IP. So I logged into what I thought was my new device, but was an existing already operational device and changed only it's management IP without changing default gateway and other information. So now the device is inaccessable remotely. Is there a way to SSH ...

Rule matching: left-to-right question, unexpected output in traffic log

On PA5050 running 7.1.5, in the monitor:traffic logs section, traffic that matches interzone default rule shows up as matching the first rule in the list. The first rule is configured like so:source zone: any, source address: any, user: any, destination zone: any, destination address: any, application: I picked one that is not in-use e.g. 'doc...

Shanef by L0 Member
  • 6862 Views
  • 1 replies
  • 0 Likes

Adding a Proxy ID member to IPSec Tunnel

I added a single host to an existing tunnel. Does the phase 1 portion of the tunnel need to be restarted to take effect? After I added the new proxy-id 39 - if I run show vpn flow - I see that portion of the tunnel is in "init" phase while all others are active. I tried tunning "test vpn ipsec-sa .." for that specific phase 2 instance but it's s...

palomed by L3 Networker
  • 2862 Views
  • 2 replies
  • 0 Likes

Resolved! Differentiate GP portal login(not client login) vs MGMT login

Has anyone run across issues where Radius server is having difficulty in identifying if it's a management login vs GP portal login. We are having a hard time to identify the difference, when we use Clear pass as our radius server. Little Background: A user(valid admin) uses his creds to login to the GUI. PA uses its mgmt interface to send cre...

SuryaR by L3 Networker
  • 4849 Views
  • 6 replies
  • 0 Likes

Resolved! Unable to downgrade PA 5220 to 7.1.x series

Dear All, When I tried to downgrade the firmware version to 7.1.x in 5220 with 5000 series os, It throws an error and from the software upgrade column, I don't see 7.1.x populated in the list. Could you please let me know whether PA 5220 supports 7.1.x OS Platform. Regards, Dinesh

Meruva by L0 Member
  • 3683 Views
  • 4 replies
  • 0 Likes

Upgrade secondary PA

i have done this in the past to save time but I was interesting in hearing what the community has to say about and if anyone else has done thisI usually upgrade my secondary PA the afternoon before I do the primary ithe next morning and they are in a mismatched state for 12 hours. I am now going to do an upgrade from 7.0.12 to 7.1.0 and then to ...

jdprovine by L4 Transporter
  • 5030 Views
  • 10 replies
  • 0 Likes

Resolved! High DataPlane CPU at PanOS 7.1.9

Hi everybody I have upgraded a Pa-3050 from 7.1.8 to 7.1.9, all seems to be OK but the DataPlane CPU is above 90% Management CPU 16%Data Plane CPU 95%Session Count 37023 / 524286 I noticied if the session count is lower, the CPU also decrease , but this behaviour didn't happens in the previous release. Do anybody knows if there is a problem with...

SOC_CSG by L4 Transporter
  • 8780 Views
  • 8 replies
  • 0 Likes

DNS Sinkhole and Honeypot to Record URLs accessed

We've set up DNS sinkhole and it works as expected. We're able to find out which IP addresses tried to access malious sites. However, we won't be able to see the URLs these IPs were trying to access. We're thinking of building a honeypot (or maybe something else) to accept access requests from these IPs and set the sinkhole IP addrss to this mac...

Global Protect Internal Gateway- Prompt a user with remaining login/lifetime.

We are planning to use Global Protect to learn user-ip-mappings. Straight forward Internal Gateway/s Architecture with 2-FA.User Logins to the portal(LDAP) and 2FA prompt, a succesful login will update the ip-user-mapping on the firewall. However, In the early testing stages found out that GP-Client/Agent doesnt give a 2FA prompt once the sessi...

SuryaR by L3 Networker
  • 2259 Views
  • 1 replies
  • 0 Likes

Resolved! 8.x UserID Agent - Two installers

Why does the 8.x user agent install have two different installers. Can somebody explain the purpose of the two? In the case of the latest version I see: UaCredInstall64-8.0.2-20.msiUaInstall-8.0.2-20.msi Thanks!

bbilut by L3 Networker
  • 8387 Views
  • 1 replies
  • 3 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks