This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4468 Views
  • 0 replies
  • 0 Likes

mail/dns/www/ftp server in DMZ - need advice

HelloI'm preparing to move my server that is mail/dns/www into DMZ zone. I did some tests and it seems to be working - but as good as I can test...Do I should use application (dns,smtp,pop3,imap,ftp,web-browsing) or use a services on ports 53,25,110,21,80,465,993,995)? What are you using and why?My NAT rule:My security policy:I have of course U...

_slv_ by L4 Transporter
  • 3413 Views
  • 3 replies
  • 0 Likes

Global Protect Slow

I've been experiencing the Global Protect Agent to be extremely slow. Just upgraded to 1.2.6 hoping for some change, well it got even slower. Connecting via IPSec and I go from my Comcast home connection being 25Mbps down / 10Mbps up with speed test to less than 1Mbps up and down. Anyone else experiencing the same thing? Any words of wisdom?

gheimer by L0 Member
  • 2698 Views
  • 2 replies
  • 0 Likes

Resolved! Schema Verification Failed

Greetings,I am kind of stuck on a problem for which I am unable to find a resolution ... When I commit on my secondary device after adding a network setting, it fails with an error message "response page -> sslvpn-custom-login-page" unexpected here.Nowhere did I add the response page on either the active or the passive device. When the commi...

Resolved! Global Protect over iPhone App not working

Is there a special configuration on my Global Protect Portal necessary to connect with my iPhone App? or a special license?I got the following error: " Gateway xxx: Es wird ein GlobalProtect gateway Abonnement benötigt. Kontaktieren Sie ihren IT Helpdesk um sicherzustellen das gültiges Abonnement vorhanden ist."

PA dont recognise the groups for one user

Hi,I just upgraded to 5.0.8 and im having a problem with one user. I have a user who is not being assigned to his groups.This user (explotacio) belongs to 3 groups in the Active directory but Palo Alto cant assign to these groups. I have clear the user-cache and it still happening. telindus@fw1orgt(active)> show user ip-user-mapping ip 10.1.0...

Schedule a reboot

Hi all,is it possible to schedule a reboot on a PA-200? I like to schedule a reboot on specific time.The firewall is connected to a DSL modem. Our ISP cuts the connection every 24 hours. The interruption of the connection should not occure during business hours.Thanks!Kind Regards

Resolved! About User-ID Collector with GlobalProtect

Hello Guys.As you know that User-ID Collector in Agentless Environment is very useful for USER-ID. I know that User-ID Collector would send only information of user-ip-mapping to other Firewall.I know that User-ID Collector only send a information of user-ip-mapping from agentless environment to other Firewall. So I am very curious about User-ID...

Resolved! FW doesn't display capturing files on packet-capture.

Hello.I am troubleshooting FW for someone issue.So I have configured packet-capture for special SRC , DST IP on FW.But FW doesn't display any stages of capturing files on packet-capture (attached file) I have checked filtering configuration is no problem.'Captured Packets' are increasing on CLI output (debug dataplane packet-diag show setting)Pl...

Separate TCP and UDP cps stats?

I'm trying to figure out the best settings for TCP (SYN) and UDP flood protection for our firewalls, but I'm struggling because I can't find the data I need. I found "New connection established rate" with the "show session info" command; however, I'm assuming this is for TCP and UDP combined. Since these are broken apart in flood protection, I...

SSL VPN Problem

Hi all,I have configured SSL VPN on my Palo Alto and it is working properly (e.g., internal websites, ssh, rdp, etc remotely) except accessing our corporate shared folder on our Windows server. However, this problem does not happen to our existing SSL VPN product that I am supposed to replace. Do I miss any steps or need additional configuration...

Apple IOS Update

Quick question,Is it possible to Block Apple IOS updates with the Palo Alto 3050. I have been working on this for a day now and haven't been able to completely block Apple IOS 7 updates.

Ja23471 by L0 Member
  • 5665 Views
  • 6 replies
  • 0 Likes

User-ID - wrong user domain

Hi there,We discovered an issue with our User-ID setup in our BranchOffices. Some times the source user is not recognized as <child-domain>\<user> but as <parent-domain>\<user>. This happens from time to time but only for a short perioid of time (less than 30 seconds).Does anyone have an idea on how we could further troub...

oschuler by L4 Transporter
  • 7324 Views
  • 8 replies
  • 0 Likes
  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks