This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 308 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 982 Views
  • 0 replies
  • 0 Likes

IPSec VPN issue

Hi All,

 

We have configured IPSec VPN between PAN and AWS. 

 

When i iniate the tunnel, IPSec and IKE SA installed successfully as a initiator.

then, IKE protocol IPSec SA delete message sent to peer. SPI:0x...

After a second, IPSec key deleted. Del

...

Javith by L3 Networker
  • 3610 Views
  • 6 replies
  • 0 Likes

HA Upgrade

I found this link on the knowledge base

https://live.paloaltonetworks.com/t5/Management-Articles/How-to-Upgrade-a-High-Availability-HA-Pair/ta-p/57081

Has anyone used this method or any other method that they would like to share. I am currently at 6.

...

jdprovine by L4 Transporter
  • 3668 Views
  • 3 replies
  • 0 Likes

Resolved! LDAP Server Update DHCP from GlobalProtect

Hi all,

 

As you may know:  When a client is connected on GlobalProtect, they are assigned a dynamic IPv4 Address, not static.  

 

In my situation, I have about 100 GlobalProtect clients.  When the client connects for the first time, they are require

...

mmclimans by L3 Networker
  • 2093 Views
  • 1 replies
  • 0 Likes

Resolved! VPN s2s with Juniper ScreenOS with multiple networks on PA side

Hello

 

I have to connect by ipsec vpn PA200 PANOS6.1.6 with NS5GT 6.2.0r15 ScreenOS.

Problem that I have is that clients behind NS must have access to two LANs on PA and to internet throuth tunnel.

 

LAN_A———

LAN_B——— PaloAlto……….tunel_IPSec………………Netscree

...

_slv_ by L4 Transporter
  • 3946 Views
  • 4 replies
  • 0 Likes

SSL Decryption Woes

Hi,

 

I am not able to get to https://platinum.netnames.com/ with SSL decryption on, on PAN 7.0.1 / PA-3020 (IE11 / FF40 == TLS failure). Also, speed seems capped to 3Mbit/s with some CDNs (S3 AWS). Am I missing something?

 

thanks.

Nested groups problem

Hello all,

 

3 domain and single forest.

(root domain)  named as domainA and domainB and domainC

 

we created 3 LDAP profile for each domain.

we can see members from all domains.

we can see groups for each domain also.

 

But problem is, if we create a group n

...

PanIst by L3 Networker
  • 4352 Views
  • 5 replies
  • 0 Likes

TCP Echo Service on an interface

Hi all,

 

Is it possible to get an interface to respond to the TCP Echo Service on Port 7 via a management profile or some other way?

 

I don't mean a ICMP echo request (Ping) but what's described here

 

https://en.wikipedia.org/wiki/Echo_Protocol

ht

...

eugenep by L3 Networker
  • 2069 Views
  • 1 replies
  • 0 Likes

brightcloud active option unavailable

Hi,

     We couldn't activate brightcloud url filtering with our old database.

I have attached the screenshot for you reference, kindly look into it and help.

 

 

 

with regards,

Ram

 

PA_URL_license.png
Gururaj by L4 Transporter
  • 2848 Views
  • 3 replies
  • 0 Likes

Resolved! PA Zones

I have several subnet routed through the PA for Internet Access. All the subnets are conencted via the same NIC.

I wanted to seperate the one of the subnet into a PA zone , but since it is connected to one NIC I cannot have two zones on the same NIC.

...

RC-BHF by L2 Linker
  • 3416 Views
  • 6 replies
  • 0 Likes

vpn s2s with Mikrotik router - proxy id problem

Hello

I'm trying to connect PaloAlto PA200 PANOS 6.1.6 and Mikrotik RB951 6.32.2

Phase 1 is estabilished properly but I cant get phase 2 working.

Logs from Mikrotik says:

Sep/22/2015 20:09:34 ipsec,debug,packet HASH computed:
Sep/22/2015 20:09:34 ipsec,de
...

_slv_ by L4 Transporter
  • 8743 Views
  • 15 replies
  • 0 Likes
  • 24040 Posts
  • 115 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks