This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 876 Views
  • 0 replies
  • 0 Likes

Resolved! GP with Host detetion and auto-connect

Hi,

PA 500 in 5.0.4 and GP client 1.2.3

Would like to be sure, I need GP auto connexion from outside of my network and no GP in my network.

Then configure my external gateway, my internal host detection. It works well.

But short question do I need the GP

...

VinceM by L5 Sessionator
  • 4975 Views
  • 5 replies
  • 0 Likes

Loopback addresses and ARP

I'd like to terminate VPN's on lookback addresses from my public range.

If my public interface is 1.1.1.1/24 and I want to terminate VPN's on .2 and .3 I create two loopback interfaces (place them in the Internet Zone) with the IP addresses of 1.1.1.2

...

Resolved! Can firewall act as VPN client?

Wondering if we can configure a lab PA-200 to connect to a VPN concentrator on the internet using IPsec, as though it were a VPN client not a site-to-site tunnel.  Not connecting to the firewall using GP, but using the firewall itself as the VPN clie

...

Nick1 by Not applicable
  • 4143 Views
  • 6 replies
  • 0 Likes

How to QOS Cisco Phones?

Architecture:

Hub and Spoke, Site to Site Ipsec VPN tunnel

HQ Site:

ASA5520

Call Manager

Cisco IP Phones

Remote:

PA5020

No Call Manager

Cisco IP Phones

Remote users connect to HQ via VPN tunnel between ASA and PA

QOS Policy

src.zone Inside dst.zone Inside to mat

...

PANoJAM by Not applicable
  • 3585 Views
  • 3 replies
  • 0 Likes

Resolved! Limiting the "admin" logging sessions

Hello everyone; some of you know if there is a way to limit the admin logging sessions. This is, if I logging in the firewall with the "admin" account from the PC A; and I try to logging to the firewall with the "admin" account from the PC B too; I s

...

Smartekh by L1 Bithead
  • 2659 Views
  • 3 replies
  • 0 Likes

User ID agents showing as red

I have 3 separate domains on my network and they are not trusted together.  On my main domain where the firewall is installed the agent shows green, however when I install the agent under the remote domains (on different subnets across the country) t

...

nthen by L3 Networker
  • 10109 Views
  • 22 replies
  • 0 Likes

NetConnect and GlobalProtect VPN Dual Setup in 4.0

We are still on 4.0. Is it possible to setup the GlobalProtect configuration while still in 4.0 and allowing Netconnect to continue working? This will allow us to create documentation for end users and distribute it and publish it before migrating.

T

...

parkerbc by Not applicable
  • 3166 Views
  • 3 replies
  • 0 Likes

Routing through virtual systems

Hello,

I have such situation that I need to make routing through virtual system. I added a network diagram below.

Maybe you guys can help me in this situation.

I want that traffic from Vsys2 can access GW_default as it can Vsys1. Also I want to control

...

aaputis by L0 Member
  • 2220 Views
  • 1 replies
  • 0 Likes

Resolved! Connecting two L2 segments via PAN?

I am trying to connect two separate Layer2 segments using the same VLAN ID 569 and same IP subnet 10.10.69.0/24.

The firewall has:

ae1 (mode layer2) with members ethernet1/1 and ethernet1/2

ae2 (mode layer2) with members ethernet1/5 and ethernet1/6

VLAN

...

efellows by L1 Bithead
  • 3362 Views
  • 3 replies
  • 0 Likes

GlobalProtect algorithms

Hi,

Does anyone know what kind of algorithms being used with GlobalProtect and how much a administrator can control this?

/kristian

kristian by L3 Networker
  • 2810 Views
  • 4 replies
  • 0 Likes

Resolved! What are the available variables for response pages?

What are the available substitution keywords for the response pages?  Do they differ by page?

I am trying to incorporate an email with all the pertinent information to be sent to our internal systems.  Unfortunately, the keywords that I have found for

...

kpatten by Not applicable
  • 9010 Views
  • 7 replies
  • 0 Likes

Resolved! Licensing scheme

Hi All,

Does anyone know the licensing scheme of PAN? Any document for based license? What will happen if they don't renew any of the license? will the box still works with outdated signatures? Hope you could share any document about the licensing rul

...

TSPI by L1 Bithead
  • 2125 Views
  • 1 replies
  • 0 Likes

LifeSize

Anybody by chance have a signature for LifeSize? I added it to the applications list with just the ports used and generic categories but without a signature but it doesn't seem to be working. I thought before I dug into making my own signature I woul

...

Resolved! not-resolved URL catagories

Hello all,

Last week I did the upgrade on my PA 2020 box from 4.18 to the latest 5.0.1 version. Today is the first day that most of the staff are back in and I have noticed that a lot of people are requesting websites to be unblocked. Having looked at

...

JRussell by L3 Networker
  • 15305 Views
  • 8 replies
  • 0 Likes
  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks