General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Query regarding the default state of FPGA on PA-3060: What's the output of the command "debug dataplane fpga state" running on PAN-OS 9.1.7 or above?

Dear Community Members,

 

I hope someone will be able to help me out to confirm the default FPGA states on the PA-3060 appliance and supply some additional info on this matter?

 

As per the knowledgebase article (CAN THE CONTENT INSPECTION PERFORM ONLY I

...

Resolved! Cannot create a support account

So I have bought the Palo Alto Firewall Bundle in the AWS Marketplace and was registering a support account, but when I log in the I get the following message:

UnAuthorized Access

Your email address, **********, was not found in the support portal. Ple

...

s.nguyen by L0 Member
  • 1951 Views
  • 3 replies
  • 0 Likes

dhcp on L3 or Vlan interface

Using our pa firewall connected to our ISP modem (in bridge mode) its working fine. But I have a zone called guest that I want to have dhcp clients on that will be separate from my trust network. I want to be able to have those guests on DHCP from th

...

duplicate ipsec tunnels

Hello Comunity,

 

I have a weird issue, we upgrade a cluster to 10.1.5-h1 from a 9.1 version, after the upgrade on the gui i see all the ipsec tunnels duplicated for example i had an ipsec tunnel called vpn_consult, after the upgrade i had 2 ipsec tunn

...

SSL Inbound decryption -Decryption error

One of my application is not  decrypted i have applied SSL inbound decryption policy  and got decryption-error.

On other hand another application with same intermediate certificate  having decrypted. As same intermediate only  child certificate is cha

...

Untitled.png

Stale SIP Sessions

Hello all,

 

We seem to have an issue with sip sessions being stuck in the session monitor for weeks and sometimes months.  There have been instances, albeit extremely rare, where it prevented new sessions from being formed on a sip trunk we were testi

...

stalesessions.png
stalesessionssip.png
ClintL by L2 Linker
  • 6217 Views
  • 4 replies
  • 0 Likes

Resolved! HA Failover Hold Timers?

Hi folks,

 

I will be configuing my first Active/Passive HA next weekend on two PA 3020 devices.

 

I am trying to understand the difference between Monitor Hold Time for HA1 link and Monitor Fail Hold Down Time for the Active/Passive settings.

 

Could anyo

...

HAtimer1.jpg
HAtimer2.jpg
OMatlock by L4 Transporter
  • 8040 Views
  • 4 replies
  • 1 Likes

Premium support contracts

I would like to open a case to verify our current support contracts. I need to know about premium supports if still covered for Hardware replacement and software maintenance? Here is my support account ID 23384

 

Thanks,

jgascon by L0 Member
  • 718 Views
  • 1 replies
  • 0 Likes

Resolved! Device registration auth key is required for on-boarding firewall running PAN-OS 10.1 and above. All firewalls running PAN-OS 10.0 and lower do not re

Device registration auth key is required for on-boarding firewall running PAN-OS 10.1 and above. All firewalls running PAN-OS 10.0 and lower do not require or support device registration auth key. You can use the button below to create OR copy the de

...

ZhouYu by L2 Linker
  • 2517 Views
  • 1 replies
  • 0 Likes

SSO with macOS devices

Can anyone tell me if there is a supported method or a known workflow to have Global Protect automatically sign in sign in to the current user account with locally domain bound macOS devices? Similar to the way we are able to do this with Windows PC'

...

Connect automatically to Global Protect using OKTA cred

Hi,

Thought it might be worth asking here, maybe you can help me 

We're using Prisma Access and the Global Protect client to log in to VPN. We're also using OKTA to authenticate.

 

Is there any way to somehow automate the login to the client, and ma

...

nivhovav by L0 Member
  • 1235 Views
  • 2 replies
  • 0 Likes

Downgraded software

I downgraded 5220 from 10.1 to 9.1.14h4 and once rebooted fan wont stop starting and stopping. Also can’t commit says communication error happened during configuration to dataplane

mlindsey by L0 Member
  • 1001 Views
  • 2 replies
  • 0 Likes
  • 24183 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels