This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4124 Views
  • 0 replies
  • 0 Likes

PA 500 stop sending reports automatically by email

Hello, After upgrading two cluster of PA500 to 7.0.1, customized reports cannot be sent automatically using email.Using the 'Test send email' is working so it's not an issue with the config. The device stop sending the reports after 18 days... Regards, HA

licenselu by L4 Transporter
  • 3656 Views
  • 4 replies
  • 0 Likes

VLAN with Palo Alto Networks PA-500

Hello, We need to set up a VLANS in the office with the PA-500 but we don't like to change our address. It's possible to configure a VLANs with MAC address or protocole with PA-500? Thanks

RCHAIBI by L2 Linker
  • 7804 Views
  • 12 replies
  • 0 Likes

Custom Vulnerability Signature. Is this limitation correct or is a fail?

Hello I've been trying to create a custom vulnerability and I have encountered this limitation:Currently in Threat Database Vault 529 version there are 50 signatures for PHP. I'm trying to add all PHP signatures and this message appears when it exceeds 17 signatures. 😞Is this limitation correct or is a fail? 😞 A few days ago we suffer multipl...

vulnerability 41003.jpg
SIEM scan vulnerability.jpg
SOC_CSG by L4 Transporter
  • 7980 Views
  • 5 replies
  • 0 Likes

Is it possible to configure dynamic load balancing using Routing protocols for below shown topology?

Hi All, Is it possible to configure dynamic load balancing using Routing protocols which are supported by PaloAlto?Requirement : We have total 16 MB line ( 8 MB from Aircel ISP and 8 MB rom TATA ISP ). We are looking to balance the load on both isp based on the traffic, means full 16 MB utilization at any given time fo...

Gururaj by L4 Transporter
  • 4186 Views
  • 3 replies
  • 0 Likes

IPSec VPN issue

Hi All, We have configured IPSec VPN between PAN and AWS. When i iniate the tunnel, IPSec and IKE SA installed successfully as a initiator. then, IKE protocol IPSec SA delete message sent to peer. SPI:0x... After a second, IPSec key deleted. Deleted SA..... please suggest

Javith by L3 Networker
  • 4375 Views
  • 6 replies
  • 0 Likes

HA Upgrade

I found this link on the knowledge base https://live.paloaltonetworks.com/t5/Management-Articles/How-to-Upgrade-a-High-Availability-HA-Pair/ta-p/57081 Has anyone used this method or any other method that they would like to share. I am currently at 6.1.1 and sounds like its not a good idea to jump all the way to 7.0 but to do it in increments. Ca...

jdprovine by L4 Transporter
  • 4179 Views
  • 3 replies
  • 0 Likes

Resolved! LDAP Server Update DHCP from GlobalProtect

Hi all, As you may know: When a client is connected on GlobalProtect, they are assigned a dynamic IPv4 Address, not static. In my situation, I have about 100 GlobalProtect clients. When the client connects for the first time, they are required to join my domain (i.e. www.contoso.com). My Domain Controller is behind my PA firewall. The ...

mmclimans by L3 Networker
  • 2441 Views
  • 1 replies
  • 0 Likes

Getting .merged-running-config.xml from a version 7.0.2 firewall?

After upgrading a Panorama-managed firewall from 6.1.x to 7.0.2, a generated techsupport file no longer contains the .merged-running-config.xml as described in doc-7904. I need to obtain the merged configuration from a firewall managed by Panorama, but on my upgraded firewalls, the TechSupport file does not have a "saved-configs" subdirectory ...

Resolved! VPN s2s with Juniper ScreenOS with multiple networks on PA side

Hello I have to connect by ipsec vpn PA200 PANOS6.1.6 with NS5GT 6.2.0r15 ScreenOS.Problem that I have is that clients behind NS must have access to two LANs on PA and to internet throuth tunnel. LAN_A———LAN_B——— PaloAlto……….tunel_IPSec………………Netscreen———LAN_MInternet —— How to do it? At the moment I have working config like https://www.corelan...

_slv_ by L4 Transporter
  • 4697 Views
  • 4 replies
  • 0 Likes

SSL Decryption Woes

Hi, I am not able to get to https://platinum.netnames.com/ with SSL decryption on, on PAN 7.0.1 / PA-3020 (IE11 / FF40 == TLS failure). Also, speed seems capped to 3Mbit/s with some CDNs (S3 AWS). Am I missing something? thanks.

Nested groups problem

Hello all, 3 domain and single forest.(root domain) named as domainA and domainB and domainC we created 3 LDAP profile for each domain.we can see members from all domains.we can see groups for each domain also. But problem is, if we create a group named ALLVPN in root domainA and there are 3 members in this group.member1-groupC which is member ...

PanIst by L3 Networker
  • 5590 Views
  • 5 replies
  • 0 Likes

TCP Echo Service on an interface

Hi all, Is it possible to get an interface to respond to the TCP Echo Service on Port 7 via a management profile or some other way? I don't mean a ICMP echo request (Ping) but what's described here https://en.wikipedia.org/wiki/Echo_Protocol https://tools.ietf.org/html/rfc862 I have an appliance that tests network connectivity by using t...

eugenep by L3 Networker
  • 2429 Views
  • 1 replies
  • 0 Likes

brightcloud active option unavailable

Hi, We couldn't activate brightcloud url filtering with our old database.I have attached the screenshot for you reference, kindly look into it and help. with regards,Ram

PA_URL_license.png
Gururaj by L4 Transporter
  • 3377 Views
  • 3 replies
  • 0 Likes
  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks