Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4638 Views
  • 0 replies
  • 1 Likes

Can we set data cap with QOS in Palo Alto for an app-id

Can we set data cap with QOS in Palo Alto for an app-id. We would like to put a datacap on the backup to 400GB per month as we have data usage to 1 TB per month. Please advise if this can be done. I am aware we can restrict only bandwidth, please advise if this is applicable.Please share configuraion that would be helpful

How to Interpret running resource-monitor avg & max

Can anyone help explain and whether my understanding is correct? avg is the average usage % in the past 7 daysmax is the peak usage % at a certain timeIs the overall DP cpu operation normal??Because max is displayed as 9x~100, it makes people feel worried Also, why is there no data displayed for Core 0.10.11?? Thanks to anyone who replies

hcheng763718_0-1750392530713.png

Resolved! PANOS 11.1.6-h3

Hi All, I am having all my Panorama & PA on-prem & VM series running with 11.1.6-h3 , Do we see any issues ? I am still required to consider another upgrade ? What will be the target PANOS? Thanks & Best Regards Yuvaraj Karvekar

Error in Outlook Email Server Profile

Hi all, I'm currently experiencing an issue with my connection to the Outlook email gateway. When using Gmail as the email gateway, everything works fine. However, I encounter problems when switching to Outlook. To test the connection from the Palo Alto firewall to the Outlook email gateway, I used my personal Outlook account. Unfortunatel...

zedexxx_0-1750837217217.png
zedexxx_1-1750837226682.png
zedexxx by L1 Bithead
  • 1173 Views
  • 1 replies
  • 0 Likes

Paloalto security Architect/Consultant - Advice

Hello Everyone, I've been working with Palo Alto firewalls for some time now and am looking to explore opportunities in solution design, architecture, and consulting. I know there are many talented professionals here who are already succeeding in this space. I’d greatly appreciate any advice, insights, or roadmaps you can share. Thank you,Murali

Resolved! Request for Free Trial Access to VM-Series Firewall and Integration Testing Support

I would like to request access to a free trial of the VM-Series Virtual Firewall for evaluation and integration testing purposes.Specifically, I am looking to:Deploy the VM-Series in a test environmentPerform basic functionality and integration validationTest log generation and forwarding (syslog, CEF, etc.)Please let me know the steps to obtain...

Resolved! Monitoring VPN Tunnel Status with SNMP Trap

Hello, I would like to use SNMP Trap to detect status changes of VPN tunnels in the PA series. Is it possible to detect VPN tunnels status changes with the following OIDs. panVPNTunnelStatusUpTrap: .1.3.6.1.4.1.25461.2.1.3.2.0.1746panVPNTunnelStatusDownTrap:.1.3.6.1.4.1.25461.2.1.3.2.0.1747 Product model:PA-220 PAN-OS version:10.2.11 B...

opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.paloaltonetworks.com, Reason: unable to get local issuer certifi

Hi, we are getting the following 2 x alerts on the same firewalls, can you please let us know how this can be fixed - googled it but I couldn;'t find a fix:alert1:opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.paloaltonetworks.com, Reason: unable to get local issuer certificatedg_id: 0tpl_id: 0 alert2: loud...

qasim02 by L2 Linker
  • 1156 Views
  • 0 replies
  • 0 Likes

DNS Servers Failure

In the Palo Alto firewall, we are unable to reach the DNS servers. These servers are in the cloud and act as proxy servers as well as domain controllers. From our VMs, we are able to ping the DNS IPs successfully, but in the firewall session logs, it shows "resource unavailable." Note that the same configuration is working on another Palo Alto f...

pr45031 by L0 Member
  • 791 Views
  • 1 replies
  • 0 Likes

Chromium-based traffic issue

Hello Experts, Our client experienced a drop in internet traffic. After running tests, they detected that all traffic generated with Chromium-based browsers was being dropped by the firewall for some unknown reason. Other traffic generated by other browsers, such as Firefox or ICMP traffic, was not affected in the same way.We haven't determined ...

Resolved! User-ID showing "Invalid Agent version"

Windows server 2016 Pan-OS 11.1.6-h3 User-ID 11.0.2 I am burnt out tying to get this to run. I have ran though all the instructions 4 times now. I keep receiving an error when running "tail mp-log useridd.log" that ends in "Invalid Agent version" I've uninstalled/reinstalled, repaired, rebooted. made new certs signed by PA root CA I crea...

E.Burke by L1 Bithead
  • 1207 Views
  • 1 replies
  • 0 Likes
  • 1597 Posts
  • 61 Subscriptions
Top Solution Authors
Top Liked Authors