This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! problem with management plane

Hi,I am not able to access the management website. The website does not load. When I try to restart the management plane from ssh with a command "debug software restart management-server" I get this error: 2014-05-08 12:08:11.503 +0200 Error: pan_read_full(comm_utils.c:104): srvr: fatal recv error. sock=3 err=Connection reset by peer (131)admin@...

UMWL by L0 Member
  • 5569 Views
  • 1 replies
  • 0 Likes

Amazon AWS VPN (VPC)

Hi all,We are working on moving some of our servers to AWS and they require 2 VPN redundant tunnels to be configured with our network. Amazon suggested to terminate the VPN on Internet edge router because the VPN redundancy requires BGP. Between the Internet edge router and the Palo Alto firewall, it is unprotected (but it will be on our physica...

Resolved! Globalprotect terminating in its own vsys?

I'm trying to setup GlobalProtect to terminate in its own VSYS (for administrative purposes), i.e the Portal and Gateway should reside in its own VSYS and not in my external vsys.But I would like to be able to use the same physical interface as the external vsys, is that even possible?I have tried to create a loopback interface with its own exte...

HansH by Not applicable
  • 2373 Views
  • 1 replies
  • 0 Likes

domain filtering

Hello, I have a big network with thousands of systems, I have 3 domains , I want to know and log all access from outside off my network to any inside server that the url is different to *.mydomain.com.If i use url filtering and in block I put * and in permit *.mydomain.com all the outside access to my network are log including all to *.mydom...

javalero by L0 Member
  • 2443 Views
  • 2 replies
  • 0 Likes

Security rule for url filtering - best practices?

I would like to know what is the impact, if any, when configuring a security policy with allow action and associate with a url filtering profile if we use application as any or application set to web-browsing.I understand the url filtering is only applicable to web-browser traffic by default, but i want to understand what is the best thing to do...

Borgiani by L0 Member
  • 2345 Views
  • 1 replies
  • 0 Likes

License for IPsec and SSL VPN

Hi all, I need to know if we need a license to acivate or configure site to site VPN ( i.e: between Cisco ASA and PaloAlto), and also for remote client (ssl vpn). if it's possible can someone please help me with the procedure to follow for these two scenarios.Thanks in advance.

Lahcen by Not applicable
  • 11055 Views
  • 1 replies
  • 0 Likes

Resolved! License for IPsec and SSL VPN

Hi all, I need to know if we need a license to acivate or configure site to site VPN ( i.e: between Cisco ASA and PaloAlto), and also for remote client (ssl vpn). if it's possible can someone please help me with the procedure to follow for these two scenarios.Thanks in advance.

Lahcen by Not applicable
  • 4689 Views
  • 1 replies
  • 0 Likes

Stats Discrepancy in the ACC

Has anyone else noticed this?Go to the ACC and sort it by Bytes (I believe this trick works regardless of the sort criteria, but it’s easiest to see this way). Make a note of the top three or so valuesNext, Click on one of these, I picked the top: web browsing. Compare the total bytes now with the values you recorded before. About half? Me too...

djr by L4 Transporter
  • 3274 Views
  • 4 replies
  • 0 Likes

Strange VPN behaviour

Hi all!Some of my colleagues have problems accessing certain services like TFS, Intranet, and Office 365(outlook, lync) through VPN. The weird thing is that for others it might work either 100%, 50% or whatever feels right that day, it seems.What could cause this kind of inconsistent behaviour?Appreciate all help I can get. Thanks!

Palo-Alto upgradation From 5.0.x to 6.0.x

Hi All, We are having PA-5050 & and PA-3020 model running on software version 5.0.8 & 5.0.9 and we are planing to upgrade it to 6.0.2. We firewall is running in Active/ Passive cluster. Please any one help to know the processes and suggest which version is stable between 6.0.1 and 6.0.2Also, I like to know what all the bug we have in 6.0...

Sourabh by Not applicable
  • 1972 Views
  • 1 replies
  • 0 Likes

site to site vpn qestion

We're moving from Checkpoint to PAN. For site to site vpns, I'm assuing i should set up a logical subinterface? How do you ensure its floating/shared in an HA cluster?

dvlacic by Not applicable
  • 2682 Views
  • 2 replies
  • 0 Likes

Disabling VPN Tunnels from trying to establish when NOT actually required

Hi,We have several kits which we use for conferences as and when needed. These kits VPN back to us when alive. The problem is when the kits are sitting in the cupboard the Palo continues to try and bring the VPN tunnel up which fills our system log up and is a waste of resources as the endpoint is gathering dust in the cupboard. Is there anyway ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks