This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 377 Views
  • 0 replies
  • 0 Likes

Web Auth FW with HA

Hello,

I am configuring Webauth with certificate on my FW cluster and currently the access to the active FW is correct.

I have created CA and client certificate correctly, the problem I am facing to access the passive node,

is it necessary to create

...

Alpalo by L4 Transporter
  • 1027 Views
  • 3 replies
  • 0 Likes

Resolved! Migrating PA-5050 to PA-5410

Hello all,

 

 Is it possible to migrate from PA-5050 to PA-5410? I've been finding threads regarding migrating to PA-5220 only, but nothing on migrating to PA-5410. We've updated the PA-5050 to the final version available 8.1.25, but when we move to

...

How to configure ipsec vpn

How to configure ipsec vpn between palo atto and fortigate firewall .

VPN flow is following

Remote Lan (191.168.1.0/24) >>>>  Fortigate (192.168.10.2 private ip)>>>>>Cisco router(203.1.1.2/29)>>>>>PaloAlto(202.1.1.10/30-public ip)----Local lan

fortig

...

Chignon by L0 Member
  • 1093 Views
  • 2 replies
  • 0 Likes

Resolved! Adding management interface to OSPF via CLI

I'm doing a lab and I need to SSH to the firewalls to run some python scripts,

 

Is there a way to set OSPF to management interacee via set commands, with a management interface of 10.1.1.75?

 

I got the virtual-router default into OSPF, but I can't

...

hfakoor2 by L2 Linker
  • 1263 Views
  • 3 replies
  • 0 Likes

Resolved! Generate cookie vs Accept cookie

Hi Team,

 

Can anyone explain what Generate cookie and Accept cookie actually do? I always find myself messing with the cookie settings when enabling DUO/Azure SAML MFA but confused as to what the difference is and what they do.

 

 

Schneur_Feldman_0-1680710262228.png

Resolved! Applipedia Down?

Hi,

 

Applipedia (https://applipedia.paloaltonetworks.com/) currently seems down - I'm getting "Sorry, an error occurred while processing your request." when visiting.

 

Anyone able to advise when this will be back up, or if this has been moved elsew

...

s3cb0ar by L0 Member
  • 2939 Views
  • 9 replies
  • 1 Likes

Problem when SSH into a firewall

I can SSH from firewall to firewall, but when i try to SSH from a C brand router to the paloalto firewall I receive this error message:

 

 

*Sep 27 21:16:32.190: %SSH-3-NO_MATCH: No matching cipher found: client aes128-cbc server chacha20-poly1305@op

...

hfakoor2 by L2 Linker
  • 1019 Views
  • 1 replies
  • 0 Likes

Resolved! adding a default route in the CLI

trying to set a default route and getting error message

 

set network virtual-router default routing-table ip static-route default next-hop ip-address 10.1.5.9

 

 

any ideas on how to set a default route point to next hop 10.1.5.9?

 

Thanks

cisc_forum_2.png
hfakoor2 by L2 Linker
  • 3790 Views
  • 2 replies
  • 0 Likes

Resolved! Allow wildcard DNS in a Network Address

Hello all,

 

We have setup a Hybrid Connection Wizard between our on-prem Exchange server and Office 365, Microsoft has provided the following link for reference in regards to firewall considerations (https://bit.ly/3dpfiZs)

 

under SMTP port 25 - the do

...

C4c-1942 by L1 Bithead
  • 39909 Views
  • 10 replies
  • 0 Likes

Incorrect PANORAMA health MonitorStatus

Hi there,

 

Could you help me understanding of my device status correctly :

 

I was looking at my device status in PANORAMA's beautiful featrure called "Deviating devices" list. I couldn't quite understand why it is reporting some of my PA devices as dev

...

CLI commands to create a SSH profile, via the CLI?

I'm working on a Python script to change permitted-ip addresses on interfaces, uploading it to my resumé to send out. 

 

I'm fairly new to paloalto, however I'm familiar to some extent with firewalls, and familiar with routers/switches.

 

I want to c

...

hfakoor2 by L2 Linker
  • 2109 Views
  • 1 replies
  • 0 Likes
  • 23835 Posts
  • 112 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks