This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

Tunnel Monitor - PAN-OS SDWAN

I've had an issue recently where randomly I've had members of my VPN mesh start to have the tunnel monitors going up and down constantly which causes BGP to never be able to establish with the peer since the static routes to the loopbacks are pulled from the route table. This has happened randomly to 2-3 sites back to either of the hubs. When ...

PA-220 disk space issues

As most with a PA-220 have experienced, regardless version running (currently latest 10.2.3-h2) root partition fills up all the time and have to run the disk-usage cleanup commands manually and tried enabling aggressive-cleaning as well, it just continuously hits level/ But it just fills up all the effin time:-) With the root disk issues seemi...

Configuration Sync is not happening on HA,Server error : Failed to synchronize running configuration

Running configuration sync is not happening between HA peers(PA-5050). We tried manually from Passive firewall CLI by the command request high-availability sync-to-remote running-config but I are getting the error Server error: Failed to synchronize running configuration with HA peer; operation not allowed: URL Database mismatch.I have restarte...

NijithPN by L1 Bithead
  • 17115 Views
  • 10 replies
  • 0 Likes

Resolved! PA-445 Passive Device LED status

Dear Team, I noticed something unusual during my testing. PA-445 was configured as HA. The front LED of typical firewall hardware is orange when in the passive state. However, for the PA-445, both Active and Passive Devices are green. As a result, active and passive cannot be distinguished visually. The PAN-OS version in use is 11.1....

Destination NAT Mismatch error

Hi I'm configuring a new PA-500 and have it working for source NAT going from Tusted to Internet. Now I want to create a destination NAT rule to allow traffic in to a web server located on the trusted net. I have created a rule almost exactly as it shows in the Admin guide but I'm getting the error - “nat rule “Incoming Web”: Mismatch destinatio...

Resolved! Issues with pushing out 10.2.9-h1

There is not a community discussion for issues implementing 10.2.9-h1 We have a maintenance window to push out 10.2.9-h1 Thursday evening and with recent issues with 1.2.7.h3 and other roll outs i am starting this thread for the community.

MLAV cloud error, all machine Learning engines stopped

Received this high-alert message on a PA5220 (10.0.8-h4) this morning, "MLAV cloud error, all machine Learning engines stopped". Has anyone else received this message before? If so, what steps should I take to troubleshoot and resolve the message? Thank you.

GlobalProtect Gateway with Multiple Client Authentication Config

Hi there, I have multiple client authentication configurations set up on my GlobalProtect portal which use the same OS type.Order is as follows: 1 - Windows OS with local auth on the firewall.2 - Windows OS with LDAP auth. What i want to achieve is if authentication fails with local auth, it tries LDAP auth and keeps going down the list until it...

Palo Alto Offering for non profits

Hi, I am curious why palo alto networks does not have a "security for good program" or donation program for non profits? Palo Alto is a large company and I think it would be an awesome move for them. Some of the companies that have one are Cisco and Cisco Meraki New Relic Microsoft Splunk Tenable (Nessus) AWS Symantec Avast

Can't push after adding a new subinterface to newly created vsys

Hi folks, I newly created a new vsys for my ha-pair in my panorama. I have also created a new device-group but only use a single template for both vsys. I've tried to create a new subinterface in my new vsys. The interface is already connected to my first vsys. The commit on panorama works fine. The push to the device ends in a "commit failed"...

Alterhut by L0 Member
  • 1430 Views
  • 1 replies
  • 0 Likes

Resolved! No ping reply via Palo to Palo S2S

I have created a site to site and both phase 1 and 2 are up. Network interfaces are configured as below Static routes are configured for S2S tunnels Policy is being hit but not reply Initiated a ping from a switch on the inside 192.168.1.0/24 to 192.168.2.0/24 Routing What am I missing here?

MAllen_0-1721915272107.png
MAllen_1-1721915366210.png
MAllen_3-1721915483840.png
MAllen_4-1721915734905.png
M.Allen by L2 Linker
  • 1164 Views
  • 1 replies
  • 0 Likes

RMA

Good morning, I hope you can support me, do you know how long it takes for an RMA team to arrive, with a premium license?

Cortex XDR Notifications

Hello community: I have some doubts about Cortex XDR notifications. Currently, I have an alert set up to send me an email every time a device has the sub-type = Fully protected. My intention is to receive an email every time Cortex is installed on any device. I've been testing this alert, but it's not working as expected. It notifies me when a d...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks