This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1822 Views
  • 0 replies
  • 0 Likes

Resolved! Vip(DNAT not working)

This is my topology. From 30.0.0.10 i would like to access the server 192.168.0.2 with the help of PA wan interface IP(30.0.0.1)
I have created DNAT and Ssecurity policy .

 

 

Object Prenat IP is 30.0.0.1/8 and Webserver Ip is 192.168.0.2/24, when

...

ArunKumar7_0-1707441279489.png
ArunKumar7_1-1707441365240.png
ArunKumar7_2-1707441401377.png

Resolved! Refund for Palo alto NGFW purchased on AWS

We have been trying to reach Palo Alto branch of refund.

We have tried all the contact information for refund.

They are not answering to both email and phone calls. 

 

We have removed the palo alto stack

 

If anyone knows how we can contact Palo Alto

...

E1T1Tech by L1 Bithead
  • 2401 Views
  • 3 replies
  • 0 Likes

SIP Invites timing out for certain calls

Hi all,

 

I've have a sip voice issue for a few weeks that I am a bit lost on. For a bit of background, we have a cloud phone system we just moved over to around a month ago. A cloud phone system links up to Webex softphone for our call center to rec

...

Restrict Microsoft365 tenant

Hi,

 

To restrict access to specified Microsoft 365 tenant (allow company M365 tenant only), I have tired to follow below link for configuration.

Using HTTP Header Insertion For Sanctioned Access To Office365 ... - Knowledge Base - Palo Alto Networks

...

ECMP, interface, zone and security policy question

Hi guys

I am quite new to Palo Alto NGFW. We have on-prem PA-32xx on 11.0.3.

I am having trouble with static route ECMP for redundant IPSEC tunnels to AWS.

Previous guy configure both tunnel in different zone (lets say AWS1 zone and AWS2 zone) and th

...

Port forwarding

Hi,

I need same help with port forwarding (Im new in this)

I want to forward external port 5078 from static public IP address to port 5060 on local IP address 192.168.168.200

 

If possible help step by step thank you very much
 
Best
Danijel
 

NET123 by L1 Bithead
  • 3812 Views
  • 3 replies
  • 0 Likes

Resolved! Device Administrators

Hello,

 

Can a "Device Administrator" unlock users in "Authentication Profile"?   Don't want to give user "Super User" unless there is no other choice.


Thanks

Rich

rcraxton by L2 Linker
  • 2276 Views
  • 6 replies
  • 0 Likes

User-id Agent Windows defender firewall issue

We have the PA User-ID agent installed and configured on a Windows 2019 DC.

 

The problem arises when I enable the "Domain Networks" defender firewall the agent losses the connection to the PA firewall under "Connected devices" in the agent view. Dis

...

Strachf by L1 Bithead
  • 2083 Views
  • 2 replies
  • 0 Likes

Resolved! ECMP Strict Source Path

Hello.

 

In ECMP settings there is Strict Source Path option to enable. But I can't find any descriptin about this option anywhere. Anyone knows what exactly does this option do? 

santonic by L6 Presenter
  • 22255 Views
  • 9 replies
  • 2 Likes

Resolved! Trouble routing from Guest zone to Internal Server

I'm not sure where to turn from here but my organization is trying to do a configuration we haven't set up before related to our student self-service system.

 

To try and summarize the issue, we have a guest-wireless zone that we need to allow anybod

...

cnorwich by L1 Bithead
  • 3328 Views
  • 5 replies
  • 0 Likes

Resolved! Site to Site IPSEC Clarification

I'm moving from a Cisco ASA to a Palo Alto firewall for the first time. I've imported the config to Expedition and am prepping it for import to the firewall, but I noticed only the first of my crypto peers for each tunnel was imported to an IKE gatew

...

Palo Alto Search Filtering in Contains

Hello,

 

I write a basic python code for 'contains' filtering in in rule name search. And I want to share with community also community can give an advice for me.

 

The code: 

"""""""""""""""""""""""

def generate_output(numbers) :
    output_strings
...

tombombadil_0-1706780527481.png
  • 24245 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks