General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 717 Views
  • 0 replies
  • 0 Likes

CONFIG logs and syslog

Hi there,

 

we're shipping our logs to a centralized syslog instance. That works great for all types of logs from the PA with the exceptions of the CONFIG logs.

The CONFIG logs are submitted at all, with the problem that the interesting parts "before-ch

...

Syslog Custom Format for Splunk

I'm trying to get the firewall to send before and after change detail to splunk. I've tried various formats in Custom Log Format, but any changes I make result in no logs being sent to splunk. What is the correct format for Custom Log Format when usi

...

Resolved! Applipedia Down?

Hi,

 

Applipedia (https://applipedia.paloaltonetworks.com/) currently seems down - I'm getting "Sorry, an error occurred while processing your request." when visiting.

 

Anyone able to advise when this will be back up, or if this has been moved elsew

...

s3cb0ar by L0 Member
  • 3392 Views
  • 12 replies
  • 1 Likes

A question about ECMP

Hi,

    I saw a function named ecmp on palo alto NGFW, I think that it can make outbound traffic load balance on two or more physics line or logic line. And I also saw there was a inbound interface information in the session table of firewall.

   So

...

VPN issues with 3 ISPs

After upgrading to the pa-850 10.2.13-H3 version, problems started occurring in one of the ISPs. There are 3 ISPs, the first two main ones and the third one as a secondary ISP which manages the VPNS. After the upgrade the configuration was maintained

...

F.Pinar by L3 Networker
  • 182 Views
  • 2 replies
  • 0 Likes

Resolved! export ike debug to syslog

Hello,

 

We are having an intermittent tunnel issue. We have debug turned on in the ike logs and when I view them on the box I see all the debug logs. However, these rollover pretty fast and if the issue occurs and no one logs in to pull the logs wit

...

SeanHuff by L0 Member
  • 274 Views
  • 3 replies
  • 0 Likes

Resolved! MFA external provider question

Hello Community,

I have always use don-prem solutions for MFA. Currently I am researching using a 3rd party provider, (Duo v2, Okta Adaptive, PingID, and RSA SecurID) . Which one do you use and would you recommend them? I was considering Duo since th

...

Global Protect application blank screen

Hello Members,

 

Can anyone help me to solve the global protect blank screen issue on my PC, as for others it normally works fine.

 

I am using Windows 11 and I have already removed and re-installed the GP App but still it shows a blank screen and I

...

SamiPTfA by L1 Bithead
  • 21235 Views
  • 19 replies
  • 0 Likes

How to stop the output of CUID errors

Attention: JAPAC TPM team

 

Hello

I'm Shono Kawaguchi.

 

Please tell me how to stop the output of the following error.

 

high userid cuid-conn 0 gRPC connection to identity.services-edge.paloaltonetworks.com:443 is broken, error: Feature is not enabl

...

Unable to set SSL/TLS Service Profile with Panorama

Hello,

At a bit of a dead end with a template change. Essentially, I am trying to configure the VMSeries Firewalls SSL/TLS Service Profile under:

Device > Setup > Management > General Settings > SSL/TLS Service Profile

I have configured the profi
...

panorama_template.png
fw_profile.png
fw_general_settings.png
C.Stuart by L1 Bithead
  • 2133 Views
  • 8 replies
  • 1 Likes

GlobalProtect 6.3.3

Our vulnerability scanner for the last couple weeks has been reporting vulnerabilities for GlobalProtect that are remediated with an upgrade to 6.3.3, but other than the vulnerability acknowledgement from PA mentioning it I do not see any evidence of

...

C.Osborn by L0 Member
  • 1155 Views
  • 2 replies
  • 0 Likes
  • 23972 Posts
  • 114 Subscriptions
Top Liked Authors
Labels