This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1778 Views
  • 0 replies
  • 0 Likes

Resolved! Public IPv6 DHCP Support

Since many ISPs are adding support for IPv6, I wanted to know if PAN firewalls support receiving an IPv6 via DHCP from the ISP? When I go to IPv6 on the interface, I don't see a DHCP or PPPoE option. It appears one can only set a static address ?

SDorsey by L4 Transporter
  • 3678 Views
  • 2 replies
  • 0 Likes

User IP-user-mapping incorrect

(PA3000 series FW running 6.0.2) Getting users being blocked by the captive portal from a local service account running on their machine.. only way around it is to disable the service and/or account and then flush the user to ip mapping cache.  Any w

...

rrau by L3 Networker
  • 6766 Views
  • 14 replies
  • 0 Likes

Resolved! Weighted dynamic routing on edge - possible?

Folks.

Current company is looking to expand to another site (yay for me - I get to upgrade my 2020's to 3020's at the head office!), however I'm in a bit of a quandary on getting the new site working.

The new site is going to have two internet links fo

...

darren_g by L4 Transporter
  • 3019 Views
  • 5 replies
  • 0 Likes

Commit times

I'd like to hear some feedback from users on the 3050 hardware. We currently use the 2020's and commit times are between 30-60 minutes. We've been using this platform for several years and been through tech support dozens of times on this issue. I un

...

Panorama HA Pair setup question

I have two new PA-500 firewalls and want to install it in Active/Passive setup. Right now only the management interfaces are connected. I did the initial setup, updated the software to 6.0.4 and connected both firewalls to Panorama. I did not assign

...

Resolved! Multiple bidirectional NATs with multiple public IPs

Hello,

I have /26 public IP addresses (164.67.80.65 - 164.67.80.126).  I bound ethernet 1/1 to 164.67.80.77/24.  Then I created a bidirectional NAT connecting 164.67.80.77 to 192.168.1.77.  Works great.  Now I want to setup a second bidirectional NAT:

...

cstech by L2 Linker
  • 4367 Views
  • 6 replies
  • 0 Likes

Resolved! Address objects: IP vs IP Netmask

Hello,

I have an address I would like to represent as an "Address Object".  The address is 164.67.80.78 and the netmask is 255.255.255.192.  I created an "Address Object" with an "IP Netmask" of 164.67.80.78/26.

I used this "Address Object" to set the

...

cstech by L2 Linker
  • 5648 Views
  • 4 replies
  • 0 Likes

Slowness over VPN

I just modified a PA-200 in our remote office to use two internet connections and two VPN connections for fail-over. The tunnels are up and are passing traffic fine for me, however users in that office are complaining about slowness over the VPN. The

...

Resolved! IKE phase 2 negotiation fail

Hi,

I'm having a hard time bringing up a VPN tunnel from my PA-5020 to a Cisco firewall.  I'm getting the following:

'IKE phase-2 negotiation failed when processing proxy ID. cannot find matching phase-2 tunnel for received proxy ID. received local id:

...

przyboro by L1 Bithead
  • 5290 Views
  • 3 replies
  • 0 Likes

Resolved! Application Dependency


Hello

We currently block access to Scribd for our employees. We now want to allow Scribd and I was looking through the Applipedia and noticed "scribd-base" but it also has dependencies of "web-browsing" and ssl". If I add those dependencies will they

...

RyanA. by L0 Member
  • 5002 Views
  • 4 replies
  • 0 Likes

App dependencies - that's creazy!!

Hello

Today I have to add MS Lync to be allowed from VPN. Sound simple.

So I add to security rule ms-lync

.

but during commit I get warnings:

ok, I added ms-lync-online but I get another warning:

DO I really need to add every particular aplication by hands

...

_slv_ by L4 Transporter
  • 6776 Views
  • 12 replies
  • 1 Likes
  • 24242 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks