This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Fan RPM defaults for a 3020

I recently purchased a PA-3020 and just fired it up for the first time. The first thing I have noticed is how loud this device is. It is almost deafening and can be heard in the hallways behind a door in my server room. Is this typical behavior? I check the fan RPM speeds and all four are registering around 14k. I called support but they st...

rayb by Not applicable
  • 3875 Views
  • 2 replies
  • 0 Likes

Dual ISP

My main PA is configured for dual ISP's and I am going to put third party certs for my global protect clients. Do I put two certs on? One for each ISP?

infotech by L4 Transporter
  • 8011 Views
  • 17 replies
  • 0 Likes

Resolved! Help With Custom Datafield or Vulnerability

I have a Snort rule for a specific network activity I wish to either block or alert on. I would like to translate this into a PAN. Would it be best to do a data field or a vulnerability?alert tcp any any -> any any (content:"|6E|"; depth: 1; content:"|36 36 36 58 36 36 36|"; offset: 3; depth: 7; msg: "Beacon C2"; sid: 1000000001; rev:0)

SDorsey by L4 Transporter
  • 3487 Views
  • 5 replies
  • 0 Likes

Use VM-100 With Could Provider - MAC Issues

We are trying to set up a VM-100 as the entry point to a virtual data center. We have run into an issue with the MAC addresses on the VM device not matching the MAC addresses on the Palo interfaces. We appear to be stuck at this point. Apparently it is not possible to change the MAC addresses inside the Palo. We approached the cloud provider abo...

khansen by Not applicable
  • 3949 Views
  • 4 replies
  • 0 Likes

API test url category

I want to use the API to query URL (Brightcloud) categorisation. This is the command in the CLI:pan1(active)> test url theguardian.comtheguardian.com news-and-media (Base db)running the same check via the API browser:https://x.x.x.x/api/?REST_API_TOKEN=250290343&type=op&cmd=<test><url>theguardian.com</url></test&...

Resolved! Public IPv6 DHCP Support

Since many ISPs are adding support for IPv6, I wanted to know if PAN firewalls support receiving an IPv6 via DHCP from the ISP? When I go to IPv6 on the interface, I don't see a DHCP or PPPoE option. It appears one can only set a static address ?

SDorsey by L4 Transporter
  • 3960 Views
  • 2 replies
  • 0 Likes

User IP-user-mapping incorrect

(PA3000 series FW running 6.0.2) Getting users being blocked by the captive portal from a local service account running on their machine.. only way around it is to disable the service and/or account and then flush the user to ip mapping cache. Any way to eliminate this???? It has been added to the "ignore list" text file on the server running ...

rrau by L3 Networker
  • 7649 Views
  • 14 replies
  • 0 Likes

VRFs on a Palo Alto - can it displace a Cisco ASR router?

Hello, we recently purchased a pair of PA-3020s to run HA with and replace a pair of ASA's. Think we've mostly got them configured to replace the ASAs with the assistance of the reseller's engineer and so far, so good - everything is working great.However, we would also like to displace the Cisco ASR that we currently have outside of the ASAs. ...

Resolved! Weighted dynamic routing on edge - possible?

Folks.Current company is looking to expand to another site (yay for me - I get to upgrade my 2020's to 3020's at the head office!), however I'm in a bit of a quandary on getting the new site working.The new site is going to have two internet links for diversity/redundancy, but I'm *not* going to be running BGP or any serious internet protocol a...

darren_g by L4 Transporter
  • 3381 Views
  • 5 replies
  • 0 Likes

Commit times

I'd like to hear some feedback from users on the 3050 hardware. We currently use the 2020's and commit times are between 30-60 minutes. We've been using this platform for several years and been through tech support dozens of times on this issue. I understand it's more of a hardware design issue and has been corrected in newer models. For anyone ...

Panorama HA Pair setup question

I have two new PA-500 firewalls and want to install it in Active/Passive setup. Right now only the management interfaces are connected. I did the initial setup, updated the software to 6.0.4 and connected both firewalls to Panorama. I did not assign templates and device groups right now.Now I have a question about the setup in panorama.As I disc...

Resolved! Multiple bidirectional NATs with multiple public IPs

Hello,I have /26 public IP addresses (164.67.80.65 - 164.67.80.126). I bound ethernet 1/1 to 164.67.80.77/24. Then I created a bidirectional NAT connecting 164.67.80.77 to 192.168.1.77. Works great. Now I want to setup a second bidirectional NAT: 164.67.80.78 to 192.168.1.78Question:Can I do this without using just the one external interface...

cstech by L2 Linker
  • 4859 Views
  • 6 replies
  • 0 Likes

Resolved! Address objects: IP vs IP Netmask

Hello,I have an address I would like to represent as an "Address Object". The address is 164.67.80.78 and the netmask is 255.255.255.192. I created an "Address Object" with an "IP Netmask" of 164.67.80.78/26.I used this "Address Object" to set the interface address. Worked great. When I went to setup a bi-directional NAT policy, I needed to ...

cstech by L2 Linker
  • 6290 Views
  • 4 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks