This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1873 Views
  • 0 replies
  • 0 Likes

Layer-3 Active/Active mode with ARP load-sharing

Hi All

I'm just wondering, if I'm using layer-3 sub-interfaces in active/active mode, is it possible to create ARP load-sharing for each sub-interface on both PA.

by EX: sub-interface 1.102 with IP address 192.168.102.2 on PA-1 and 192.168.102.3 on PA-

...

Resolved! Antivirus Profile Issue

Hi Gents,

I installed Palo Alto between clients and my server farm in VWire Active/Active mode.

I created a policy for user access to the file server, and when I apply the antivirus profile to the policy the share accidentally hangs from time to time.

t

...

Resolved! Active/Active HA in VWire Mode

Hi Gents,

I'm just wandering if the Floating IP or ARP load-sharing configuration are required in vwire mode. or they are only required in layer-3 mode.

all of the documentation I've read about that aren't clear enough.

Regards,

Maher

How to know object name of OID on PAN

I have an alert system to monitor performance all of device in my system, include my PAN.

I can add all of each oid on the PAN, but I can not know the correspond name of each oid.

Example : OID 11.3.6.1.2.1.2.2.1.10.1 is "ifInOctets"

I have so many oid

...

Resolved! IPSec tunnel, delayed status update

I had one of our remote sites go offline two days ago due to an ISP outage. However, the site to site link showed as up for several hours before it finally dropped and showed as offline. IS there a setting to have this respond faster so it shows offl

...

QoS Bandwidth Per User

I would like to be able to limit our users to a certain amount of bandwidth at a time.  I know I can do this for individual IPs, however is there a way with QoS to basically say, don't allow each individual IP on the network any more than 25Mbps or s

...

Do Management Port, Console Port use MP?

Hello~

PA Devices'plane divide MP, DP

MGT, Console Port, Dedicate HA1, and usb port connect to MP

and than the others port connect to DP

If RJ45 or SFP can be given mgt function or HA1 backup port

Doesn't that use dp resource?

If MP is worried Can HA1 Port

...

Monitor ISP with PA 3020

What is the method to monitor an ISP bandwidth usage  through the palo alto firewall especially if you do not have google chrome?

infotech by L4 Transporter
  • 2329 Views
  • 2 replies
  • 0 Likes

Resolved! Optimizing a particular website

We have a website which all of our 500 users use daily.  Our users do a lot of streaming (youtube, netflix, you name it).  Depending on the user the "allow" rule for http, https and New-relic coudl be as much as 40+ rules down.

Would it be beneficial

...

BobW by L4 Transporter
  • 3751 Views
  • 3 replies
  • 0 Likes

Domain User Names not showing in Group-Mapping

This is driving me crazy and looking for some input...

I have the User-ID Agent installed on my single domain controller which is running fine and connected to the PAN on version 5. Using an example below (my domain is different), I've duplicated the

...

robg303 by Not applicable
  • 8413 Views
  • 9 replies
  • 0 Likes

Resolved! Device administrator rights

Hi,

  -

one stupid question: why "device administrator" can't load, export/import configuration (can only superuser)? In Setup -> Operations tab only setting is - validate candidate configuration.. If i create custom Admin role with all rights, in setu

...

Interface by L3 Networker
  • 5145 Views
  • 3 replies
  • 1 Likes
  • 24253 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks