General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Looking for a way to compare a Panorama template and a firewall running config

Hello,

I'm currently looking for an easy way to compare a Panorama template and a running config from a firewall. Right now the only way I can accomplish this is if I export snapshots from both the Panorama and the firewall then get rid of what I do

...

Resolved! The difference between Max Sessions and New Sessions?

Hi All,

I would like to ask you as below:

Can you tell me the meaning of Max Sessions and New Sessions in Palo Alto Firewall? what is the difference between Max Sessions and New Sessions?

Why would someone use "Next VR" for next hop?

When creating a static route on one virtual router. What would be an example of why you would choose "next vr"?

Resolved! Can an Interface and Sub Interface be part of different zones and have an individual IP?

I know we have to untag an Interface but I was wondering if this is an option?

Regards,

Resolved! Is it possible to have OSPF and EIGRP co-exist ?

Since PAN is not supporting EIGRP , If we have an EIGRP enviornmnet , do we need to migrate over to OSPF ? would be possible for both to co-exist ?

Resolved! VSYS limitations

Are there any specific limitations in numbers of policies/sessions/tunnels/routes/etc in a vsys ?

RDP with Gprotect time out

HI,

We are establishing RDP sessions through Globalprotect. These RDP sessions are closed, we went into this link: https://www.paloaltonetworks.com/documentation/70/pan-os/newfeaturesguide/globalprotect-features/rdp-connection-to-a-remote-client

We c

...

block keywords

Hello,

I need a advice. We need to block any keywords for our users. Could you edvice how to do it?

Thanks

What is the maximum character can filter text box can support in Palo Alto Panorama 7.1.6

Global Protect\MPLS redundancy

Currently I have an MPLS connection (Connected to a Palo Alto Firewall) at one of our branch offices in Shanghai. The problem is the MPLS connection (provided by Level3) goes down sometimes.

I'd like to setup a Global Satellite connection on the PAN

...

GlobalProtect and overlapping networks - is it a problem?

Hello

I'm using GP since few years without any problem. Recently my colleagues complains abut situation when he can't established RDP connection. Local networks in their home is 192.168.1.x and my servers are on the same network 192.168.1.x -
That's th

...

PAN-OS 7.1 - SSL Decryption Issues

I recently upgraded from PAN-OS 7.0.6 to 7.1.0 on a lab PA-200 appliance to start to test some of the features. Right off the bat there seems to be an issue with SSL Decyrption. As I stated in another post, I'm having issues with sites such as bank

...

Host name disappears

Running 7.0.6 on both panorama and firewall. Any reason why one device would all of a sudden lose its host name?

Wrong geo location for an IP

I have a set or rules that block access to some IP depending of their geo location. The problem is that an is is incorrectly geo located by the palo alto.

IP is 91.194.60.7, located in France, and Palo Alto locate it in Ukraine !!!

Is there a way to

...

Resolved! Panorama Device group

IS it possible to create a device group in Panorama yet make to where it when configs are pushed to Device group it doesnt affect any other device groups and cause out of sync? Bascially I want to manage off shore device in Panorama but when config

...

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Looking for a way to compare a Panorama template and a firewall running config

Resolved! The difference between Max Sessions and New Sessions?

Why would someone use "Next VR" for next hop?

Resolved! Can an Interface and Sub Interface be part of different zones and have an individual IP?

Resolved! Is it possible to have OSPF and EIGRP co-exist ?

Resolved! VSYS limitations

RDP with Gprotect time out

block keywords

What is the maximum character can filter text box can support in Palo Alto Panorama 7.1.6

Global Protect\MPLS redundancy

GlobalProtect and overlapping networks - is it a problem?

PAN-OS 7.1 - SSL Decryption Issues

Host name disappears

Wrong geo location for an IP

Resolved! Panorama Device group

PA not be able to access internet

SSO Palo Alto Support Portal

IPv6 on public interface

Template- Variable CSV greyed out

Can't find the "Republic of Kosovo" in the "Firewall Region Code Legend"

Re: Allow all web addresses with .gov and .edu extensions

Re: Wildcard URL for Non-HTTP/HTTPS traffic

Re: Howto delete sub-interace from cli

Re: SSL Inspection issues with GlobalProtect users

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Unlock your full community experience!

Resolved! The difference between Max Sessions and New Sessions?

Resolved! Can an Interface and Sub Interface be part of different zones and have an individual IP?

Resolved! Is it possible to have OSPF and EIGRP co-exist ?

Resolved! VSYS limitations

Resolved! Panorama Device group