This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

TS agent on XenApp 7.7?

Hi! As i can see the newest TS agent(7.0.2) is only supporting XenApp 5.0/6.0/6.5. I have a customer that wants to get UserIDs from Citrix and then use AD groups to limit access to resources. BUT the customer is running on XenApp 7.7. Anyone who has tried if this is working on XenApp 7.7?

Global Protect Slowness

We recently installed a PA-3020 on a 1G circuit and are experiencing very low speeds when clients are conecting in using GlobalProtect. When connecting in from home on a 20M connection we are seeing speed drops down to a max of 5M (mostly lower). We do not have QoS set up for the tunnel so they shouldn't be limited on the PA. We are only seeing ...

drischar by L1 Bithead
  • 10846 Views
  • 10 replies
  • 0 Likes

Problems with XFF cleaning

Dear all,we are getting more and more problems with the way PA handles the X-forwarded-for header.It is very useful in getting the internal client IP in a proxy environment. OTOH, you need to clean it before it goes out so that you don't leak internal IP addresses.This cleaning creates a problem.PA only replaces the content of the header with bl...

AndreasB by L2 Linker
  • 10625 Views
  • 14 replies
  • 0 Likes

GlobalProtect: Pre-Login and user cert based auth?

Hi All, I've successfully configured pre-login and can enter my creds in to the GP client the first time I log in and it works great. Is there a way to use a user certificate for the user auth and avoid any action on the users part for auth? Desired configuration: 1. Pre-login with computer cert issued by my CA 2. When the user logs in, use ...

record reached max ression number

HiPls advise if we have CLI cmd that record the PA box reached max session number till now ...So I can assess if it will reach our session limited .ThanksJeff Jin

JeffJin by L2 Linker
  • 4414 Views
  • 5 replies
  • 0 Likes

Resolved! Hardware Upgrade

Can anyone tell me the best way to upgrade from a HA pair of PA-2020's to new PA-3050's.

rrobins by L0 Member
  • 6078 Views
  • 3 replies
  • 0 Likes

Resolved! Not working captive portal in https

Users report me problems, when they launch web-browser with a website in https, captive portal is not shown and they can not surf on internet, but if they go into http website the captive portal is working. why is not being showed the captive portal in https webs?

Resolved! VPN connection problem

Good afternoon, When we are in an external network (for example wifi ) with IP range 10.10.XXX.XXX, and our computers are trying to connect to VPN, which has the same pool address 10.10.XXX.XXX, they can not. The connection is not established . GlobalProtect Portal uses as connection method "user-logon (Always ON)" and INTERNAL HOST DETECTION i...

SOC_CSG by L4 Transporter
  • 3852 Views
  • 4 replies
  • 0 Likes

Resolved! How is to work vsys instances?

I have two 5060 in cluster. I have new request to set up a 3 new vsys. So Currently these PA have the vsys1 by default, and I monitoring this PA via Nagios. My question is, When do I configure a multiple vsys, these vsys will be sending your own logs to syslog server ?. Best regards Andres

Apadilla by L3 Networker
  • 4129 Views
  • 4 replies
  • 0 Likes

QoS on Aggregate (AE) interface

Hi, I am using PAN 7.0.3. I got two GigaE interface to form the AE Interface, however, I cannot set the Max Egress value more than 1000. And also, from the QoS Statistics and never seen the runtime bandwidth goes more than 1000. If so, it looks meaningless to us for the aggregaated interface to have 2GBps.

Koala by L2 Linker
  • 7317 Views
  • 7 replies
  • 0 Likes

Wildfire - email notification issues

Has anyone else experienced wildfire email notifications not being sent to all team members? Basically we have 3 team members who are all setup the same to recieve wildfire email notifications. One team member gets about 95% of the notficitions via email the other 2 team members only get 5% of the notifictions via email. This has been ongoing ...

lewis by L4 Transporter
  • 4043 Views
  • 4 replies
  • 0 Likes

Resolved! Does enabling Packet Capture on Security Profiles degrade system peformance?

Does enabling Packet Capture on Security Profiles degrade system peformance?The client has 3 5050's, one placed at each of 3 different sites. Are there any other costs or limitations assosicated with enabling this feature? Is single-packet or extended-capture preferred?Does Palo Alto have any best practices around this feature? Thanks.

vsolwazi by L1 Bithead
  • 7433 Views
  • 6 replies
  • 0 Likes

Panorama logs missing beofre a date

Hi, We have 2 FWs sending logs to Panorama. We see the logs in Panorama after 3 January but not the logs previous this date. Why??? we havent done anything in Panotama for not to see this previous logs. Regards, JC

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks