This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 2178 Views
  • 0 replies
  • 0 Likes

Resolved! PanVPN agent

Hello admins.

I read in documentiotion that there is VPN client software for Palo Alto devices.

I wanted to try it out, but my licence expired and I can`t access to software page (if there is one).

I would like to know if system supports "client VPNs" (

...

Internet load balancing

Hi i have 5 internet connections (two dedicated links with different ISPs and 3 shared links with one ISP) , I need to configure the 5 untrust zones for internet and one for trust how i can configure the VR and how i can i use PBF per group of users.

...

Resolved! Deploying LSVPN ( Large Scale VPN) with NAT !!!

I'm newcomer with Palo Alto. I have project to deploy PA using LSVPN . But there is a problem because The Internet Link from ISP & MPLS must Via Router Cisco.

But I wonder , when using Router at Border , that means you must NAT Public IP to Private IP

...

MinhTuan by L0 Member
  • 5541 Views
  • 5 replies
  • 1 Likes

Resolved! GlobalProtect certificates

In my company we have AD and our internal CA. I want to use our internal CA for GlobalProtect. What I have done so far:

     I've import our root CA to PA500 (PANOS 5.0.3).

     I've generated web server certificate and imported it in PA500

     I've cr

...

marjan by Not applicable
  • 2908 Views
  • 2 replies
  • 0 Likes

Monitoring and Blocking eMail

Hello,

I want to know how I can do the following questions:

1.- How can I block in gmail application the access to all the mails like this xxxx@gmail.com, but allow the access to emalis like this xxxx@domain.ec that also are associated with Gmail.

2.- H

...

Angel by Not applicable
  • 2140 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect Usage Report

I have created a custom report to track all VPN users by subnet.. I parsed it to user and total bytes.. however, I can only get maximum 500 lines.. we have 1000 GP users, anyway around this?

rrau by L3 Networker
  • 2338 Views
  • 1 replies
  • 0 Likes

Resolved! FIPS mode IPSec cipher suite subset

When you enable FIPS mode on the firewall, what are the subsets of cipher suites available that the admin guide is referring to?

Admin guide -

"When configuring IPSec, a subset of the normally available cipher suites is available."

Mail server getting blocked when downloading files

I have an exchange server that is getting block-continues for file types that are not being explicitly blocked...pdf, jpg, etc.

It has no way to continue.....

I believe it must be some default behavior I am not aware of in the AV or AS profiles?

Where a

...

Resolved! Unable to connect Global protect portal,..

Hi All,

I am able to download GP client software, But using the same credential not able to connect to portal, giving error : portal error - unable to connect to portal. Only through one machine i am able to connect to portal using same credentials wh

...

Gururaj by L4 Transporter
  • 2399 Views
  • 1 replies
  • 0 Likes

Resolved! Tunnel Interface IP Address

Can somebody explain to me the need for the tunnel interface IP address? Apparently a VPN tunnel requires a tunnel interface configured with an IP address when using dynamic routing. Is that a dynamic gateway the PA is connecting to or the PA is usin

...

Resolved! what is standard port of ms-dtc app-id?

Hello.

I checked that ms-dtc standard port is tcp 139 on applipedia. I created couple of security rule for ms-dtc app-id and one was applied application-default at service column and other was applied specific service port tcp-49210, tcp-49217, tcp-49

...

Roh1 by Not applicable
  • 5392 Views
  • 3 replies
  • 0 Likes

Resolved! SNMP request failed

Hi, I try to request to PA-5020 with S.O. 1.4.7 some snmp traps for extract certain information about fo temp, cpu used, max sessions, etcetera.

But when i try to extract the information since my snmp tool called snmpcheck the result is "Request Faile

...

Juniper ScreenOS VPN to PANOS

I have a Juniper firewall with ScreenOS 6.2 that I am attempting to build a LAN to LAN VPN tunnel to a PAN firewall with 4.1.10.

A quick overview of my setup. We have to frequently setup networks that are "mobile" for company meetings or whatever. We

...

  • 24249 Posts
  • 119 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks