This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Quick Licensing Question

Does anyone know if I need to renew the GlobalProtect Gateway subscription if I'm currently only using IPsec Tunnels and have no plans on using the actual GlobalProtect Portal or Gateway on this particular set of devices. This is Post 7.0 since that seems to make a difference.

BPry by Cyber Elite
  • 2595 Views
  • 2 replies
  • 0 Likes

Third Party Remote Access VPN

Is there an official list of supported third-party VPN clients for remote access? Specifically is any version of the Windows native VPN client officially supported? Thank you,

Force updating and installing PanDB URL

Hi, In previous version to 7.0.x we went to DEVICE->DYNAMIC UPDATES->UPDATE URL FIltering packet. but in the new version i can see anything related to URL filtering PANDB update. How can i force my PA to download and install new DB URL PA1(active)> show url-cloud statusPAN-DB URL FilteringLicense : validCurrent cloud server : s0300.urlc...

LSVPN Tunnel Lifetime

We have 1 LSVPN Tunnel that is disconnecitng everyday and reconnecting daily at same time. Is there a parameter I can adjust to make the tunnel active 24x7? Thanks

GUI Authentication via LDAP

Hi, i have followed the procedure to configure and it works as long as in the authentication profile the allow list is set to "all". The user is present in the administrators list, and i can login using my domain user password. Problem is, i want that to work against an AD group not "all". If i set a group mapping pointing to a specific AD grou...

myrdin by L2 Linker
  • 2583 Views
  • 2 replies
  • 0 Likes

Resolved! Integration Palo Alto PAN-OS v7.1.X. using Custom Log Format and improve QRadar (LEEF)

Hello Everyone!We have the following devices:QRADAR Version 7.2.7Palo Alto Firewalls PAN_OS 7.0.9Panorama PAN-OS 7.0.9Palo Alto Custom Log Format LEEFIf I use the "Custom Log Format" for setup my Syslog Server Profile, as you have shown us in the link I put below:http://www.ibm.com/support/knowledgecenter/SS42VS_7.2.7/com.ibm.dsm.doc/t_dsm_guide...

lqs6cDV
SOC_CSG by L4 Transporter
  • 6810 Views
  • 3 replies
  • 0 Likes

Resolved! Search syntax for object management

Hello community I have tried to look this up in the help, but could not come up with anything useful. Therefore I thought I'd might give it a try here. I have to delete an bunch ob objects at the same time. So instead of typing one IP address and then deleting the object and do this over and over again, I though I'd better come up with one sear...

TiborNad by L1 Bithead
  • 4352 Views
  • 3 replies
  • 0 Likes

Resolved! Failed to establish SSL connection to Panorama Server

I upgraded a PA200 from 7.0.5 to 7.1.3 on friday.After the upgrade, the box show a MGT CPU load average on >80% and is not able to connect to Panorama anymore. The box is rebooted twice adter upgrade to try to fix this. Anyone know a fix?

What's going on with 7.1.4-h2 OS?

Hi, I think something not right with behavior changes on the release 7.1 with application defaults. Now my firewall blocking Sophos clients from communicating with my remote Sophos servers Sophos uses standard ports but look the firewall cannot catch the application ID and catching it as SSL on the port 8192/8194 and that make it not matching wi...

Untitled.png
Untitled1.png

DHCP option 132 (IEEE 802.1Q VLAN ID) format for Mitel phones

Hi Guys, Can someone help me, please? DHCP option in Palo Alto DHCP server. Something that l have never configured before and need some clarification. So l want PA DHCP server to provide VLAN ID for the Mitel phones when they getting and IP address (DORA process). VLAN has to be 215 and options are ( ASCll and Hexadecimal). What option value d...

OP.png

Public wifi clients unable to access our public web servers

Our public wifi traffic is unable to reach our external web servers that have public IPs (like webmail). The public wifi network is in the same zone, but it is assigned 172.30.0.0 IP, and we have ACLs to prevent the 172.30.0.0 network from talking to 192.168.0.0. It is also being outbound NAT so it gets assigned a different public IP address th...

Maxstr by L3 Networker
  • 2426 Views
  • 3 replies
  • 0 Likes

Resolved! how to make ssh work on different port number

Hi, my colleague requested for some server to communicate to outside server (internet) using sftp. but they want to use port 9122.on the firewall rule i cannot find the way how to do it. i know sftp i using ssh port 22. i tried defining port 9122 and ssh as application but it doesnt work. anybody have any idea? tia chris

Clearing files to create space.

My PA200 is complaining about 10% space. pa200> show system files/var/cores/:total 4.9M-rw-rw-rw- 1 root root 652K Apr 24 20:21 core.20803-rw-rw-rw- 1 root root 652K May 17 13:44 core.17902drwxrwxrwx 2 root root 4.0K Jun 1 03:16 crashinfo-rw-r--r-- 1 root root 3.2M Jun 1 03:30 l3svc_7.0.6_0.tar.gz-rw-rw-rw- 1 root root 652K Aug 13 07:51 core....

Migration tool refuses HTPPS connection

Hello! I downloaded MT 3.1 for vmware player, imported it and turn it on. MT has ip adres 192.168.208.129 and I can ping it, but when I try to access it using HTTPS, it refuses connection. Does anybody had similar problem and how it can be solved? Best regards,Maja

mkopcic by L2 Linker
  • 2531 Views
  • 2 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks