This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4246 Views
  • 0 replies
  • 0 Likes

Resolved! SSL decription between firewall and proxy

Hi Guys, We have a palo alto 3020 firewall in peremeter and websense proxy server in internet network acting a explicit proxy. So users are browsing internet through proxy server and the proxy will forward the traffic to internet via PA firwall. We need have following requirment. * Enable ssl decrption in PA firewall and inspect any traffic comi...

irshad.n by L1 Bithead
  • 3156 Views
  • 1 replies
  • 0 Likes

Skype on PAN 8.0

Hi Has anyone had issue with Skype on PAN 8? This week we needed to bypass decryption of *.skype.com to get Skype to work on the Apple iOS Skype app (consumer Skype). Our setup inspects all ssl traffic apart from the finance /banking / health categories. Thanks

Resolved! How to enable Ping on ISP interface with Dynamic IP?

Hi folks, As I continue my baby step learning, I am successfully using a PA-200 to access the internet from my internal clients.I am now trying to understand how to enable ping (at least temporarily) on my 1/1 Untrust-L3 interface. I like to be able to ping it from anywhere on the web for troubleshooting and learning purposes. I am following th...

ping1.jpg
ping2.jpg
ping3.jpg
OMatlock by L4 Transporter
  • 10836 Views
  • 4 replies
  • 0 Likes

Panorama - search and replace?

I'm kind of new to PaloAlto firewalls and I am looking for guidance on how to help with a little situation. As part of our migration, we had to create a bunch of security-zones that parallel what is on the system already. It was a cludgy, but functional work around. OK, so what I have now is zones like this: CorporatexxxxCorporate where "xxxx" ...

Failover (Active, Standby) 2 WAN Tunnel IPSEC

Hi All Expert,I have a small question to ask you.I have plan to use PA for this semester and try to find what PA can do.I have more than 10 Partners dial Site-to-Site VPN with me.One of 10 Partners have connection issue with my primary link, so PA will switchover to secondary link to serve VPN to that partner. Question:1. When PA switchover to s...

Change PAN Education Email Address

Hi All My current work email address is used to log in to support.paloaltonetworks.com (super user, can add/remove users, see all our assets etc). It is also linked (not sure how) to my PAN Education login/transcript via SSO. I will be leaving my current company at the end of this week and will obviouously be relinquishing my rights on the supp...

smichie by L0 Member
  • 1920 Views
  • 1 replies
  • 0 Likes

PAN for NSX 6.3 and vSphere 6.5

Does anyone know if NSX 6.3 and vSphere 6.3 are officially supported for PAN yet? I looked at the release notes for 7.0 and 7.1 and they are both stating vsphere 5.5/6.0 and NSX 6.2. I have a POC lab with NSX 6.3 and vSphere 6.5 that i was looking to integrate this on for customer demos.

plesogor by L0 Member
  • 1971 Views
  • 1 replies
  • 0 Likes

Resolved! Grant access to device with specific installed applications and captive portal for others

Hello, I would like to know if it was possible, and how, to grant access in the internal network (wired and wi-fi), on the basis of the presence of an application. In fact, I want to allow access to devices where spécific applications are installed, and redirect others to a captive portal for identification. Have you got any information tu set u...

GlobalProtect Login Portal Redirect to 443

We're trying to find a way to redirect people trying to hit our Globalprotect login page on straight http to redirect to https seemlessly. We thought we had this working with an inbound NAT policy with destination translation looking for original service as TCP 80 and the translation moved it to TCP 443. This doesn't actually seem to be workin...

jsalmans by L4 Transporter
  • 11680 Views
  • 4 replies
  • 0 Likes

ikev2 VPN

Is it possbile to set up a VPN using ikev2 and if so is there a document of the steps to create it?

jdprovine by L4 Transporter
  • 2784 Views
  • 2 replies
  • 0 Likes

Issue with traffic over ipsec tunnel.

PA-3020 ,7.1.8. PA has 3 tunnels with 3 sites. Site1 - PA200 on other side tunnel traffic fine. ping from site1 to subnet behind Pa3020 works with 1472 mtu and fails afterthat. Site2- Tried to migrated from ssg140 to PA-3020,other side Cisco 871. Traffic from PA-3020 to Site2 works fine.But from Site2 to PA3020 can only ping. rdp,mail,port 80 t...

Resolved! Palo Alto Mapping problem adding new groups

Hi, we have a PA3050 and we are expecting a problem related to Group mapping. We have added two new groups in LDAP Group mapping profile. We can add these 2 groups using WebUIS "Included groups", we launch a refresh userid group-mapping but when we run "show user group-mapping state all", we can see all goups but not the new ones added. Why Pa i...

Resolved! Migration to Panorama for logging only

I have a quick question about moving an existing set of firewalls to Panorama. We don't want to migrate the whole config, just want to get it setup so we can send the logs on the device to Panorama so we can utilize the benefits of log aggregation for parsing logs. From my understanding of it, I only need to setup the trust between Panorama an...

Resolved! Unused rules showing used

I just upgraded and rebooted my firewall. When I choose to highlight unused rules it is showing rules that I can not find any traffic for in the traffic monitor as used. I thought the reboot would reset everything but I have no idea why a rule that appears to be unused is showing used - any ideas?

jdprovine by L4 Transporter
  • 7234 Views
  • 10 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks