This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4460 Views
  • 0 replies
  • 0 Likes

Unable to find the reason for packet drop

Hello, In our Palo Alto the traffic is allowed on the firewall but it is not working. When we did packet capture we found that return traffic in drop stage. To find the cause of the packet drop I have set the filter using 'Manage Filters' in GUI then use the following command. debug dataplane packet-diag set filter on but I am unable to se...

Palo lato firewall is not fetching latest dynamic updates and software updates

Dear Friends, We have a customer who is not able to fetch latest dynamic updates and software version. we checked, ping reply is coming from updates.paloalto also address is getting resolved, we restarted device-server and management server also we cleared the session from CLI we tried almost everything, then we rebooted device, but no luck ...

Slow GlobalProtect on PA-1410

Trying to see what might be going on with our PA-1410 after we upgraded to 11.0.2-h4 from 11.0.2-h1. We have tons of tickets for slow GP connections since that upgrade a few weeks back. We have a 1gb link and average usage is <100mb. Users will connect to GP, go to the file server, go to open an Excel file and you'll see Excel saying it is...

PA-3410 Refer Latest Version and Upgrade Path

Hi Guy, I am using PA-3410 PAN-OS version 10.2.8-h3, I want to upgrade the firewall to the latest reference version. Thanks to the team, please help me refer to the latest version of the current device and the upgrade path.

nhutvt2 by L1 Bithead
  • 7418 Views
  • 10 replies
  • 0 Likes

Github over 443? How do I allow on specific policy?

We have a specific rule to allow github based on PAN EDL of github v4/v6 addresses. Git works over port 22 but not over 443 with the policy below. I want to allow git over 443 on the policy below but not clear on the best way to do it. Do I need to specify service as ports 22 and 443?

drewdown_0-1716298330250.png
drewdown by L4 Transporter
  • 3354 Views
  • 2 replies
  • 0 Likes

Moving BGP from Juniper router to PA 5410

Hello, I'm planning to remove some older Juniper MX routers from the network edge and move the BGP peer configuration to an Active/Passive pair of 5410s. There are two ISPs. For now I'm just hoping to replicate the Juniper setup on the PAs. Right now the PAs statically route traffc to the Juniper where the BGP peers are configured. I want...

Resolved! VM-Series SKU End of Life question

Hi Guys so we have a client with a number of VM-100 FWs on Azure.. we recently migrated them from perpetual licenses over to NGFW Software Credits. so at the moment they are still running as VM-100 but with the flex licenses valid till 2026 now.. according to this the VM-100 series expires end of July 2024 https://www.paloaltonetworks.com/se...

PA_nts by L4 Transporter
  • 5154 Views
  • 2 replies
  • 0 Likes

Source NAT Pool range use case practices

Hi Expert , I would like to consult about how can use Source NAT Pool range with multiple clients to source NAT pool can use DIPP ( Dynamic IP and ports) or Dynamic source nat actually I hesitate to use DIPP because I think suitable than dynamic source nat but I'm not sure correctly or not ? please suggest me Thank you

Download Failed

Model PA-440V 11.1.2-h3 We have GP agent 6.2.3 downloaded to our PA-440, but I have not had my Apple Mac updated to that version for several months. I can still connect to my office via GP VPN but my computer client is GP App version 6.1.3-703. When connected, GP tries download the latest version at startup and every 15-20 minutes thereafter. Th...

JCapron by L1 Bithead
  • 3133 Views
  • 1 replies
  • 1 Likes

Various Commands on CLI returning Unknown

Anyone know why various commands such as "debug" would return "Unknown Command" on the CLI? Is this possibly due to my permissions on Panorama? These commands are relatively common and are even referenced in palo KB articles but they don't seem to work for me 😕

  • 24378 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks