General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 538 Views
  • 1 replies
  • 4 Likes

Resolved! Migrate from PA-500 to PA-220

Hi All,

 

We are planning to migrate from PA-500 to PA-220, and there are some concerns to verify.

 

Here are our current versions.  My concerns are,

 

1) How we can match the OS/Content versions with the new PA-220?

2) What will be the migration procedure

...

KosalaBandara_0-1618979777307.png

Resolved! IPSec Tunnel with NAT configuration

Hello Experts,

 

I am new to PA and trying to understand how below can be achieved. I am trying to set up IPSec tunnel between checkpoint and PA.

Diag:

 

I want to establish a IPSec tunnel between CP and PA. On PA side i have 172.16.0.0/24(inside zone) pr

...

nitesharbale_1-1630603596644.png
nitesharbale_2-1630603828134.png
nitesharbale_3-1630603878868.png
nitesharbale_4-1630603953461.png

Resolved! Warning: No Valid DNS Security License

Hi Team,

 

I am using PA-3220 . We have only Thread Prevention & Wildfire License. Before Anti-Spyware -DNS Signature was using DNS-Snikhole.

 

Now we change to block we start getting Warning No Vaild DNS Security License . Do we had to buy a license as

...

NavidAlam by L3 Networker
  • 5356 Views
  • 3 replies
  • 1 Likes

Resolved! IPSEC vpn between cisco 2900 and PAN

Hi everyone, 

 

I'm trying to setup a route based IPSEC tunnel between my PAN 3020 and Cisco 2900 router.  I'm getting a parameter mismatch on on the ipsec lifesize parameter and don't know how to fix it.

 

The Cisco peer appears to be wanting a lifesize

...

epeeler by L2 Linker
  • 1089 Views
  • 3 replies
  • 0 Likes

Resolved! Warnings DNS Security

Hello team,

 

I have cluster active-pasive PA-820 version 10.1.0

 

When I make a commit I recibe this alert " Warning: No Valid DNS Security License"

 

Someone helps me?

 

 

 

Regards

 

 

Alpalo_0-1631270781892.png
Alpalo by L3 Networker
  • 948 Views
  • 3 replies
  • 0 Likes

High CPU on the management plane

I am running 9.1.10 on the PA-850.  Last night, I replaced the User-Agent Server and pointed the PA-850 to the new UA server.  After that, the CPU on the management goes up to 100% and stayed there until I had to reboot the PA-850.  I attempted to re

...

dtran by L3 Networker
  • 1278 Views
  • 3 replies
  • 0 Likes

Jio Meet application is not accessible

Hi Team,

 

Today i came up with an issue that i am not able to access JIO Meet application. While i was checking the applipedia website the JIO app was not there.

I came up with a solution to create a custom application. Yet not sure which ports are use

...

UID setup questions

All,

 

setting up windows based uid agent, looks FW connected to it is fine, but which shows connecting to the DC server.

From debug info,

 

09/08/21 22:05:08:082[Debug 355]: Event: type="server status" name="x.x.x.x" status="Connecting"
09/08/21 22:05:08:

...

AllanGao by L1 Bithead
  • 436 Views
  • 1 replies
  • 0 Likes

Microsoft Radius Authentication with PA

Hi,

 

I am trying to setup Radius Authentication with PA. I have setup EAP(PEAP) and EAP-MSCHAP v2 on the windows radius server. However I can only login to the firewall using PAP. I have tried to import the certificate from the radius server but not s

...

umar00o by L2 Linker
  • 2556 Views
  • 6 replies
  • 0 Likes

Radius Authentication Failure: Timeout

Issue: Authentication failure when using AD Account 

Log: Authentication Timeout to server 

 

Setup:

PanOS Version: 10.1.1

Panorama is not used 

NPS Installed on Windows Server 2016

Radius Server Profile Created

Authentication Profile Created 

Admin Role Crea

...

X-Auth IPSEC tunnel for Mobile doesn't work

Hello there:

Recently I enabled IPSEC and X-Auth for the GlobalProtect Gateway, hoping to let my mobile users could use remote IPSEC access VPN. But it didn't work as my iPhone kept showing "user authentication failed'. I am pretty sure the configs on

...

FelixXia by L0 Member
  • 781 Views
  • 3 replies
  • 0 Likes

Updated Server Requirements for Community Edition

Does anyone have the updated server requirements for the MineMeld Community Edition?  I believe the ones noted here are dated - https://live.paloaltonetworks.com/t5/minemeld-discussions/recommended-minemeld-system-requirements/td-p/140542.

smarkley by L0 Member
  • 408 Views
  • 0 replies
  • 0 Likes

Resolved! How to graph total number of UDP sessions over time

We're looking at setting up Zone/DoS protection and we would like to have a graph in order to establish a baseline. I've seen the ones within Pano health but those seem to be total numbers. We'd like to be able to see UDP separately. Is there somethi

...

Top Solution Authors