This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Certificate not valid

I am trying to setup Machine authentication, where it actually validates the machine certificate, I have a PKI infrastructure, that pushes certificates to the machines, with there name in Common Name, and SAN, of the machine hostname. 

On they Certif

...

Resolved! Panorama will not upgrade as a stand alone.

Hi guys new here. The problem I'm having is my panorama will not upgrade. Of course I get the "requires a content version of 8529 or greater". I've look that up and found out I needed to download the latest content(APPS and Threats), did that but I g

...

Myoung1 by L1 Bithead
  • 329 Views
  • 5 replies
  • 0 Likes

UserID Agent version compatbility

Hello,

 

I'm currently working through the Certificate Advisory.  We currently have firewalls running 10.1.11, user-ID agent is 10.1.1-102.   Started an upgraded firewalls  to current preferred version of 10.1.13h1.  The issue I have is I am simultan

...

Resolved! Exempt alerting for specific threat

We have an open wifi network and do see lot of coinhive spyware threat alerts. Recently a user genrated in excess 30000 email alerts for CoinHive JavaScript Detection. We don't want to block the user and also the external IP is not single one. Firewa

...

raji_toor by L4 Transporter
  • 4076 Views
  • 6 replies
  • 0 Likes

Issue with PA-1410 platform disk size

Hello Team,

                  Recently we have deployed PA-1410 in our datacenter and since first day we are having issue with disk space in loggin.

and after contacting the support, logging is not more than a week which is not accepted from our side

...

Panorama high MIB memory

 

Hello community!

 

We are monitoring the Panorama system resources and we get alerts regarding memory (MIB). We don´t have any performance issues though.

Can you advice if the following memory levels are fine or it´s too little memory free?

 

> sho...

Negate networks within an object group

Hi,

is it possible to negate certain networks within a rule?

 

example.. src (192.168.0.0/16) and dest (10.0.0.0/8) action Deny

but want to negate dest 10.200.0.0/24 in the same rule so that 192.168.0.0/16 cannot talk to 10.0.0.0/8 but can talk to 10

...

PA_nts by L3 Networker
  • 119 Views
  • 1 replies
  • 0 Likes

Help with XML api device configuration

I'm looking for a solution to automate sdwan deployments so I'm trying to do a couple of things with this api call:

 

1 - create the layer3 subinterface interface

2 - give the subinterface an ip and next hop ip

3 - enable sdwan on the interface and g

...

Resolved! ION CLoudGenix Devices Offline

Hi Team, 

 

Has anybody experienced any issue with CloudGenix ION devices where you can SSH onto the device but actual on the Prisma Cloud Portal all the CG devices shows offline ? 

 

I have one of this issue where I can remote into every single ION

...

H.Suthar by L0 Member
  • 317 Views
  • 3 replies
  • 0 Likes

Decrypt STARTTLS SMTP protocol but not blocked Virus File

The mail server resides on the network inside PaloAlto.
I am trying to add a feature to use STARTTLS for SMTP/25 from the mail server to the Internet.

I implemented STARTTLS decryption (Forward Proxy) on the PaloAlto and sent an email with Eicar Virus

...

Hogewo by L1 Bithead
  • 392 Views
  • 2 replies
  • 0 Likes

Resolved! PANOS 8.0.4 warning ipv6 not enabled on tunnel interface

Hello All,

I just upgraded to 8.0.4 and now when I commit the tunnel interface associated with my external GP gateway gives a warning that "ipv6 is not enabled on the tunnel interface tunnel.1.  IPv6 address will be ignored!"

Did something change in th

...

dan731028 by L3 Networker
  • 14011 Views
  • 14 replies
  • 0 Likes

Block Exchange ECP externally

Hello team,

 

We are experiencing with our hosted exchange server on the cloud. Despite efforts from our Server team to block ECP access from external networks, it remains accessible. The team has suggested blocking ECP for external networks only.

I

...

  • 23587 Posts
  • 103 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks