This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4250 Views
  • 0 replies
  • 0 Likes

Resolved! Palo Alto PAN-PA-220 setup at Satellite Location

My company has a Satellite location with a different ISP. We are thinking about adding a Palo Alto PAN-PA-220 setup at the Satellite Location. Will this device be covered under our current Paloalto support coverage?

Administrator account issue

PA-5050 device with software version 4.1.6.In all my devices except one, I was able to create a new Administrator account (Superuser) with password and log on with the account to administer the device. The problem device allows me to create a new account like the others, but I get an "Invalid Username or password" error when I attempt to log on...

kwaid by Not applicable
  • 10651 Views
  • 7 replies
  • 0 Likes

Resolved! vulnerabilities detected on https://appvpn.xxxx.xxx through our Bitsight

Hi team, We use a cybersecurity tool called Bitsight in order to discover vulnerabilities in our organization. This time the tool has found out some in our https://appvpn.xxxx.xxx subdomain which is a web portal to download the GlobalProtect client. The Bitsight finding in this case are related to the Content-Security-Policy header config...

Alpalo_0-1718719318523.jpeg
Alpalo by L4 Transporter
  • 4506 Views
  • 2 replies
  • 0 Likes

DHCP Server - Conflict IP's

Has anybody else experienced an issue with their DHCP server leases being constantly filled up with conflict IP's by one device? There is no pattern to which device will do this, it seems at random. I'm on version 11.1.6 Any guidance would be much apricated.

CPATT_0-1771337718677.png
CPATT by L1 Bithead
  • 627 Views
  • 1 replies
  • 0 Likes

Assistance with LDAP Authentication

Currently working on a PA-540 running 12.1.3 code. I have setup a LDAP server profile, and setup an authentication profile. If I test from the cli, the bind is successful, but the authentication fails, even if I use the same credentials I used to do the bind. I've also tried this with a domain admin account in case it was a permissions issue ...

DJ_1924 by L2 Linker
  • 713 Views
  • 2 replies
  • 0 Likes

Move FW to a TEMPLATE VSYS

Hi, I have created a new vsys in a 5220 to have all the config that we have in a VM FW. Which is the best way to move all the FW VM config inside the new VSYS in 5220. Copy all the FW VM config and paste it in the template VSYS in panorama? Is there an way to do it by GUI?

BigPalo by L4 Transporter
  • 374 Views
  • 1 replies
  • 0 Likes

Resolved! Management IP in Active/passive setup

Hi I am quite new to Palo Alto firewalls, but have worked with different vendors before. When running a HA in Active/passive a central VIP for mgmt is usually setup, so you dont connect to the passive FW.From what i see there is no VIP for mgmt in the HA setup i am working on here. Is that something that is setup wrong or ? We have a dns name ...

Resolved! Does Palo Alto plan to offer on-prem versions of the DLP, OT discovery and Strata Cloud Manager for data sovereignty?

As data sovereignty becomes a big issue for some customers palo alto has great features but some like DLP, OT discovery and Strata Cloud Manager are only SaaS based. My question is does Palo Alto plan to offer on-prem versions of the DLP, OT discovery and Strata Cloud Manager? Not like appliances or Virtual Machines like Panorama but maybe k...

HA ACTIVE firewall is failing when commit

The problem is that after performing a Commit&Push, the primary (active) firewall generates a status change that affects the signaling of the Cisco Nexus switch ports, causing them to enter suspended mode on both switches in the VPC configuration. After the switch stops seeing the primary firewall, the primary firewall does not switch. Disco...

F.Pinar by L3 Networker
  • 564 Views
  • 2 replies
  • 0 Likes

Resolved! About threatID action.

The followin theatID action is "Alert".Would you tell me the reason why action is default set to "Alert"?Would you tell me if there is policy for the default action? 30941316843197132351343213475736415391543990954465548015905585253866469016693719 Best Regards,Atsushi Takara

Configure VPN GP wit Microsoft Authenticator

Hi, i would like to configure my VPN using MAuthenticator. Anyone has a guide for this? i was checking this link but im not sure if this config should be used if you have EntraID AD in the cloud or not: https://learn.microsoft.com/en-us/entra/identity/saas-apps/palo-alto-networks-globalprotect-tutorial We have AD in server onpremise.

BigPalo by L4 Transporter
  • 1710 Views
  • 3 replies
  • 0 Likes

PAN OS 11 and DHCPv6 with Prefix Delegation

I wanted to make sure I had the settings correct for configuring DHCPv6 on my WAN interface for Starlink. I can confirm that I did get an allocation of IPv6 addressing with a /56 prefix and was successfully able to get an IPv6 address assigned to my internal interface. The issue is, it appears I have not gotten an actual perm or temp address o...

ChazKlinkbeil_0-1705503939918.png

Resolved! Blocking Google Games

Has anyone had any success in blocking the Google browser based games yet? I have seen a few threads with no answers. I'm going to bust out the Fiddler and see where it is going during this but I don't want to interfere with normal users and their Google searches. I was thinking there would be an app-id for it but I may have to find domain nam...

  • 24360 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks