This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4223 Views
  • 0 replies
  • 0 Likes

Feature Request - Security Profile policy

Hi, One thing about configuring security profiles is that when I like to change a security profile, there are so many security rules to update with the correct profile. I know I can change the profile itself and all policies using that profile will be affected but that is not always what I want. In my view it would be much better to place securi...

mgusta by L2 Linker
  • 4317 Views
  • 3 replies
  • 0 Likes

Problem Global Protect Behind NAT

Hello I have the following scenario: -PA-3020 Edge Firewall who provide as internet access-PA-200 LAN Firewall behind PA-3020 We are triying to configure Global Protect access for GP-200. -I have a fqdn for the portal and gateway access which resolves a public IP for external access and resolves a privete IP for internal access-Public IP for fqd...

AitorGD by L1 Bithead
  • 4074 Views
  • 1 replies
  • 0 Likes

Resolved! VPN Timeout

Anyone know if there is a way to setup GP VPN to notify the end user before their VPN connection times out? Any feedback will be greatly appreciated. Thanks

tbpowers by L0 Member
  • 2540 Views
  • 1 replies
  • 0 Likes

Commit failed with error "Have to specify one of source or Source-v6 address for netflow"

Hi Team, I am trying to import a firewall for the first time to panorama. I have done many before this but the error this time is new. When I try to push config to firewall which I am trying to import, below message is showned for failure of commit. Details:Have to specify one of source or source-v6 address for netflow.Have to specify one of sou...

Strange Behavior with SIP traffic related to ALG

I'm running into an issue where specific NAT and Security policy names or numbers change then the SIP traffic stops working. I found that if I clear the sessions post change then everything starts working again. I believe this is related to ALG, like the SIP traffic is taking the parent session even though it is no longer valid. I see these sess...

Packet Capture filters not correct

I have a problem once in a while where packet capture filters are not working. I set up the filters at one point and if I delete the filters and set up a new filter. Turn packet capture back on and it still gives me captures of the old filter. I can not figure out how to either clear out the filters or clear out the packet capture files.Anybo...

How to copy from just the right side of the Preview Changes diff window?

In PAN 6.1 if I go to Commit and click Preview Changes - I have the old on the left and the new on the right. The problem is that I want to copy the text from the right side of that screen and not the left. Is there any handy trick that would allow me to do that? I tried the alt key, the ctrl key nothing works. It would be super helpful for crea...

palomed by L3 Networker
  • 2238 Views
  • 2 replies
  • 0 Likes

Getting old PA-200 back in IT life

Helloi inherited on PA-200 on my new job and want to get it back on IT life. While booting i observed the CLI and this is what i got. Needless to say i have no responces to any command entered.Is anyone abel to provide some info how to set it up again?Apprecaited responses. mount: can't find / in /etc/fstab or /etc/mtaberror writing /etc/mtab....

Traffic Logs - Multiple IP's

Hi, Is there an easy way to monitor traffic logs on say 20 IP's to see if any IOC's are being hit? I'm guessing I could build a filter for each IP but I was hoping there might be a way to do it easier. These are not contiguous IP's so CIDR won't help me. Thanks,James

Resolved! Looking for screenshots of a bare metal restore on a 2050

I'm developing an SOP and require screen shots for the following steps:On the ‘Device’ tab, choose ‘Setup’ and configure the following:On the ‘Management’ tab under ‘Management Interface Settings’, enter the firewall’s IP address, netmask, and default gateway.On the ‘Services’ tab, enter the IP address of the DNS server.Enter the IP address or h...

PAN-OS 8.0.2 URL logs not showing up

Hi guys, I'm running a new PA-VM-50 on 8.0.2 within Esxi. The VM is fully licensed and has all the latest dynamic updates and URL filtering db. VM License - VM-50VM Mode - VMWare ESXiSoftware Version- 8.0.2GlobalProtect Agent - 0.0.0Application Version -701-4036 (05/18/17)Threat Version - 701-4036 (05/18/17)Antivirus Version - 2247-2734 (05/18/...

Resolved! "Engine Fatal" error message in minemeld

Currently on version 0.9.38 and I'm getting a fatal engine error message. Tried restarting the engine I get this error message. minemeld-engine FATAL Exited too quickly (process log may have details)minemeld-supervisord-listener RUNNING pid 1519, uptime 0:09:19minemeld-traced FATAL Exited too quickly (process log may have details)minemeld-web R...

RobertWu by L0 Member
  • 4617 Views
  • 1 replies
  • 0 Likes

SSL decryption for email

Hi, Do we need to enable SSL decryption simply for reading SMTP messages? We have created a profile under Objects and attached it to incoming mail policy but attachments with extension dll, bat, exe file all get through and see nothing in Wildfire submissions. Thanks in advance.

FileBlock.png
Farzana by L4 Transporter
  • 2727 Views
  • 2 replies
  • 0 Likes

Config .XML in the config bundle is empty

Hi everybody! I have a little issue with which maybe you can help me: I have a HA with a pair of 3060s among other FWs managed by a Panorama, when exporting a config bundle from the Panorama, the config XML file for the pair of 3060s is empty. What can be the reason?? Thanks in advance and Kind Regards, Marcos.

Carracido by L4 Transporter
  • 3582 Views
  • 3 replies
  • 0 Likes

Resolved! Monitor Logs

How do I change what gets logged in the monitor URL logs.. All I see are block url messages.. I need to see all traffic.. Thanks

rmsdip3 by L1 Bithead
  • 3489 Views
  • 4 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks