General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

jdelio by Community Team Member
  • 1 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

PA-5050 8.1.11 Inter Vsys traffic

Hi all, We got a Palo Alto 5050 active/passive HA configuration with two vsys with a lot of inter-vsys traffic.Our DP1 is running at 100% during working hours. I am convinced that the problem is that inter-vsys traffic can't be offloaded to hardware....

Globalprotect is greyed out on maOS Catalina

Globalprotect stopped working on user's Macbook. After reinstalling Globalprotect (version 4.0.5-8) on macOS Catalina in version 10.15.4, it is not possible to click on Connect, even the window for writing username and password is not displayed. All ...

MicrosoftTeams-image (31).png

Resolved! NAT RULE - IPsec VPN

Hello all,I am implementing an IPsec VPN and I have to NAT the source IP address, but I am very confused with the bidirectional source NAT,Lets say my local IP= (natted to, remote IP in the other side of the VPN= exa...

joseglez by L1 Bithead
  • 4 replies

Resolved! SSL inbound decryption and Post message in PA PCAPS

We have configured the SSL inbound decryption.When we do the PCAPS on the PA we do not see POST message on the re and tx pcaps. Need to know is this default behaviour?On traffic logs we see decryption flag as checked.Also from CLI i verify that PA is...

MP18 by Cyber Elite
  • 4 replies

Global Protect Gateway

Hi everybody, I'm getting through this issue: although we have 3 gateways configured in our portal, my GP client allways connect to the same one. How to deal with this client behavior?Tks in advance

Resolved! Block email attachment from specific domain

Hello experts, Is there any way in Palo Alto to block email attachments coming from specific domain?Lets say i want to block all email attachments which are coming from * Is it possible?

Vikashh by L2 Linker
  • 5 replies

Resolved! PA sending TCP RST for a NAT rule

Hi everybody,Adding a bidirectionnal NAT rule for an ssl web server and the according security rule, connections from outside are dropped as "Incomplete". Traffic capture show that first SYN packet received is directly rejected by PA with a RST respo...

Resolved! Configuration of Security Profiles

Hello, I have a question related to the actions that I can configure in Security Profile. Specifically, Vulnerability Protection. What happens if I set the action as "Alert"? Will it drop the connection? Or the connection will be permitted, and it ju...

iscott by L2 Linker
  • 1 replies

adding zone and subinterfaces

Hello I have panorama 9.0.4 and palo alto fw 8.1.7 we are not using templates I have to create 6 zone and subinterfaces . So do i need to create them locally on the firewall ? Will it get sync to panorama automatically ? or do i have to do something ...