This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 202 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 884 Views
  • 0 replies
  • 0 Likes

Resolved! Client certificate profile with two CA (Globalprotect)

Hi,

We have PA-5050 version 6.0.7 and GlobalProtect cliente 2.3.3 (we also test 2.3.4). We have created a client certificate profile with two CA certificates, a portal configuration with this certificate profile and a gateway configuration with the s

...

JRSanch by L1 Bithead
  • 2154 Views
  • 1 replies
  • 0 Likes

Monitoring profile troubles - Dual ISP

I got a TAC with PA opened for this one but wanted to ask the community if you've experience this one.  The problem is when the PBF kicks in (disabled primary circuit) the primary circuit traffic immediately fails over to the backup ISP.  I've adjust

...

treese by L3 Networker
  • 2385 Views
  • 2 replies
  • 0 Likes

Minor feature request - Move up/Down rules in GUI

Hi,

Minor thing.. but maybe something for a future release down the track?..

When you create a new rule (or want to re-position existing)

and click 'Move'.. instead of just up or down.. allow a line number to be entered in the dropdown.

and have the rule

...

VicPark by L0 Member
  • 2650 Views
  • 2 replies
  • 1 Likes

Resolved! TSM backup and app override

Is configuring app overide for backup traffic like TSM best practices?  TSM is always our biggest talker on all our firewalls and we know this traffic.  It seems to me we wouldn't want the fw to inspect it all the way through layer 7.  Please provide

...

treese by L3 Networker
  • 4079 Views
  • 4 replies
  • 0 Likes

PA-500 Boot Time being slow

I have (3) PA-500's, and the one thing I have noticed on all of them, is that it takes up to 10 min. to boot.  It takes 15 min or longer if there is a new release being installed.  What does the PA use for storage, and why does it take so long in thi

...

Resolved! Way to ignore dependency warnings?

We have setup a general web browsing policy and users were being blocked from viewing github.  We allowed github-base to the policy and commited it.  They can now view github without any issues but every time we commit we recieve a warning "Applicati

...

ACESJosh by L1 Bithead
  • 9810 Views
  • 10 replies
  • 0 Likes

Draytek Vigor - Site to Site VPN

Hi there,

I'm looking to setup a few site to site VPNs using a PA2020 at our HQ site with Draytek Vigor 2830n routers at the other end. We have fixed IP addresses on the other end so I don't need to worry about the issues with dynamic IPs.

I was wonde

...

UKRB by L3 Networker
  • 4957 Views
  • 2 replies
  • 0 Likes

FQDN Address Object wont resolve

Hello,

 

I am trying to setup a U turn NAT that runs so that any system trying to contact time.apple.com using the NTP protocol will be rerouted to an internal NTP server. We do not allow NTP out and iPhones and iPads ignore DHCP settings for the NTP

...

PhilH by L2 Linker
  • 12829 Views
  • 9 replies
  • 0 Likes

Youtube getting falsely recognized as google

Shortly, after the APP-ID changes were implemented, I'm having problems with youtube.  By default we disable general access to youtube.  However, we do allow access to specific videos.  When I attempt to connect to youtube.com using http, I get block

...

bwsaloum by L2 Linker
  • 3137 Views
  • 2 replies
  • 0 Likes

migration ipsec rsa vpn from juniper ssg

Hello all,

 

There is 2 juniper firewalls.side to side between them.Side A and Side B

I'm going to change side A with Paloalto and for sideB change configuration is not allowed.

 

So everything is ok except for vpn.inside juniper phase 1 profile is s

...

mathsss by L1 Bithead
  • 4028 Views
  • 6 replies
  • 0 Likes
  • 24014 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks