This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1709 Views
  • 0 replies
  • 0 Likes

Resolved! Threat Details

H

 

Hi,

What is Exempt profile here , 

Since severity is informational , Do we need to  care about this ? 

What if we don't want  alert  or any action  if the severity is informational ? 

 

 

Is it good practice just one rule in an antispyware profile ?

 

Than

...

used in current.png
anti spyware profile.png
sib2017 by L4 Transporter
  • 4280 Views
  • 5 replies
  • 0 Likes

Resolved! Feature Request: Change the ARP cache timeout value

Dear Team,

 

We are facing an issue with wake-on lan after migrating the VLANs to paloalto.It has been observed that machines are not able to start by sending the magic packets after half an hour.We could observe that arp table cache is getting cleared

...

Issues and Observations Upgrading to PAN-OS 7.1.7

Hello Everyone,

We are in the process of upgrading our firewalls to PAN-OS 7.1.7, and have come across a number of issues and oddities, and figured
it would be a good idea to create a community post to document them so that they might be a reference fo

...

Resolved! OSPFv3 support for IPv4?

Greetings all,

 

I've been looking over some possible improvements to consider as we're moving our firewall deployment closer to production.  We've got a lot of Cisco equipment through our core along with a switch VSS that runs various VRFs surrounding

...

jsalmans by L4 Transporter
  • 3708 Views
  • 3 replies
  • 0 Likes

PA lost mapping

hi, we are expecting problems with group-mapping. Yesterday we deleted a group from group-mapping profile and suddenly PA lost match in all the rest of groups in this group-mapping profile. we ran show user group-mapping state all and Number of group...

VPN Client, Can't connect to internal zone?

Hi, Good day!

 

I would like to ask what would be the problem,

 

From outside user accessing via ssl vpn (VPN ZONE) below details are working.

1. It can connect / has the ip pool assigned

2. It can reach the internet using the assigned pool.

 

Problem is fro

...

Pros and Cons of v-wire

I'm setting up a PAN firewall between our company and our business partners who have direct connections to our LAN.  My idea was to use v-wire but some of our other network administrators say it would be too difficult to troubleshoot.  What are the p

...

svanarts by L1 Bithead
  • 3969 Views
  • 2 replies
  • 0 Likes

Commit failing

Running a VM-300 on PANOS-7.0.3

 

When attempt to make a commit (either through GUI or CLI), it hangs at 98%, and then fails.  The commit failure outputs the following:

 

Client sslvpn requesting last config in middle of commit/validate.  
Aborting curren...

mmclimans by L3 Networker
  • 5799 Views
  • 1 replies
  • 0 Likes

API timeouts/Web UI unresponsive

 

Hello,

 

Managment plane stops responding when sending a number of User-ID XML API calls to FW (tried using PAN-OS 7.1.5 and 8.0).

Any API calls during this time either time-out or return 502/504 HTTP responses.

After close to exactly 5 minutes later fr

...

Farzana by L4 Transporter
  • 2502 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect Certificate Prompt

My users using GlobalProtect on Windows are experiencing a very strange problem when they connect with GlobalProtect.   I am stuck on this one, any tips, pointers, or possible solutions are much appreciated.  

 

Usage:

  • Our GlobalProtect clients conne
...

certerror.png
mmclimans by L3 Networker
  • 4280 Views
  • 1 replies
  • 0 Likes

BGP establish state flapping.

I have couple of bgp established on the firewall. Confiugured new one to AWS ,tunnel comes up but Bgp is flapping.

System logs.

BGP peer session enters established starte,peer ip:169.254.32.1

BGP peer session left established state,peer ip: 169.254.32.1

...

Select route with shorther prefix length

I have a static route for 172.16.0.0/12 but my PA is also learning through OSPF a route for 172.16.0.0/24.

 

As these routes have different prefix length both are installed in the routing table and the dynamic route for 172.16.0.0/24 learnt through OSF

...

COM-UCO by L1 Bithead
  • 3789 Views
  • 3 replies
  • 0 Likes
  • 24219 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks