This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Panorama connectivity issue

Hi everybody, When I configured my new firewalls to register with my panorama, they didn't appear.I checked the following points:- Connectivity between my firewalls and my Panorama : OK => I do some packet captures on both side- TCP bidirectional traffic on port 3978 : OK => I do some packet captures on both side- Re-generate SSL certifi...

MT 3.1 and CheckPoint VSX

We're running a really old version of CP 71.40 running VSX with multiple virtual firewalls. This document describes where to get a config file from, but this does't account for a virtualized enviornment and the file nor directory exists for these virtual CheckPoint Firewall. https://live.paloaltonetworks.com/t5/Migration-Tool-Articles/Chec...

Resource-unavailable for http traffics

Hi All, Some of the sessions are ended with Resource-unavailable reasons. Almost all traffics in these sessions are web-browsing and some updates traffics on port-80. All https-443 are working fine. this issue happened for 4 hours on last week. checked here for describtion: https://www.paloaltonetworks.com/documentation/61/pan-os/newfeature...

Javith by L3 Networker
  • 11495 Views
  • 6 replies
  • 1 Likes

Resolved! Agentless USER-ID - rules

Good Day I'm testing user-id in policy-rules and its not working the way I thought it would. Example Rule src zone/ip - Zone A/any dst zone/ip - Zone B/any user - gdc\test.user application - any service - application-default action - allow I start a ping to a server/workstation from Zone A to Zone B and I get request timeout, but if I remo...

burtond by L2 Linker
  • 7592 Views
  • 12 replies
  • 0 Likes

creating vsys

Hi , I would like to create , vsys for routing .P resently fw is runnin in virtual wire mode .How i can copy the same policy which is in another vsys Thank you

sib2017 by L4 Transporter
  • 2101 Views
  • 1 replies
  • 0 Likes

Resolved! What happens when the return-mac limit is reached when using symmetric routing?

Does anybody know what happens if the limit is reached on the return-mac table? We have multiple ISPs and can host services on each if we use a PBF rule using symmetric return. However, there is a limit and I can't find any information about what happens when the limit is reached. The admin guide just says To determine the next hop for sym...

what ports updates server is using ?

customer can not update lic through method of Retrieve license keys from license server, Maybe their ASA stop some ports. I want to know updates.paloaltonetworks.com is using what ports. Expect someone can help me !!!

Yue.Ma by L1 Bithead
  • 5484 Views
  • 3 replies
  • 0 Likes

User ID agent or agent less?

Hello What is recommended approach to configure User-ID, agent or agentless? My scenario is, I have two centralized DC in HQ and there are 22 remote sites having two local DC each. Also in case of agent approach, what is the best practice, where to install the agent?

Kashif by L2 Linker
  • 4521 Views
  • 1 replies
  • 0 Likes

URL Filtering for Roaming Devices

It's my first post on the forum here. I've been working with PA products in the enterprise for about 2 years. Just out of curiosity, what are organizations doing for company owned roaming device URL filtering (if at all)? Obviously one option is to use Global Protect with an always-on VPN. However, the drawback for us it that it would requir...

Resolved! Log entry: DHCP server auto-probe finished

Hello.At a customer DHCP server has suddenly stopped working. Log entry shows following info:Type: dhcpSeverity: informationalEvent: server-auto-probe-offDescription: DHCP server auto-probe finished, turn off DHCP server since received offer from server 255.255.255.255 interface ethernet1/xI was looking for event info but I couldn't find System ...

santonic by L6 Presenter
  • 7077 Views
  • 5 replies
  • 0 Likes

Unable to see running config by CLI in a cluster with PA-3060s managed by Panorama.

Hi all, Maybe you can give me any clue with this issue: I have a pair of PA-3060 managed by a Panorama and the deployment works fine. But I´m unable to see the running configuration on the cluster members by CLI. The only shown is the parameters concerning the deviconfig and all the other configurations are not listed. I tried with the sam...

Carracido by L4 Transporter
  • 6496 Views
  • 3 replies
  • 0 Likes

Best practices for implementing access to Office 365?

Does PAN offer any formal guidance for implementing access to Office 365, specifically for Outlook access to Exchange Online?We have, via trial-and-error, enabled this access using the newly-minted AppID for Office 365, but are seeing occasional Outlook session disconnects. Microsoft is, predictably, telling us that none of their other customers...

KGC by L3 Networker
  • 10887 Views
  • 5 replies
  • 0 Likes
  • 24379 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks