General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2838 Views
  • 2 replies
  • 13 Likes

Are there performance issues due to object groups?

Hello all,

As shown in the attached photo below, the limit on the number of members in the address group of PA-3220 is 2500.

1. We are going to apply about 2000 Object Members per address Group to the PA-3220, is there any performance issue? If there w

...

Screen Shot 2022-11-23 at 9.20.43 AM.png

Questions about session limits on PAN

On firewall datasheets we have two max session  values :

Max sessions (IPv4 or IPv6) = A
Max concurrent decryption sessions = B

 

Question in here : are these two separate buckets ? lets imagine decryption sessions reach out to Value B , does it mean t

...

BGP Peer & Route Advertising

Hi All, 

 

I have followed a few guides but cannot manage to get a /30 RIPE subnet advertised to our ISP. I have followed the following guide for route distribution, however, i cannot see them in the Local RIB and RIB out tables. https://knowledgebas

...

DForde by L1 Bithead
  • 959 Views
  • 1 replies
  • 0 Likes

SSO Kerberos setup for Admin

I have been able to set up Kerberos for explict userid/password entry at the logon screen. Now I am trying to setup SSO.

 

I at least get to the Click the button to login as user@domain.local. Yet when I proceed, I get Not Authroized.

 

System log shows

...

Practical XFF usecase

XFF for user-ID - Displays IP as 'x-fwd-for: x.x.x.x' format

  • Seems to me just an investigation help feature
  • maybe can even block a particular IP/s if used in security policy as a source user, haven't tested this.

 

XFF for Security Policy - Gives abil

...

raji_toor by L4 Transporter
  • 1029 Views
  • 2 replies
  • 0 Likes

Resolved! caddies for a 5200 and 2500

Hi

 

i am looking for caddies that fit a PA-5250 and a PA-3220 firewalls i can find replacement the replacement drives looking for parts numbers for them original was where damaged in moving. Please can someone help me with this as i need these caddi

...

CIT1977 by L1 Bithead
  • 1068 Views
  • 3 replies
  • 0 Likes

PA-450 License Issue

Hi Team,

Is there any known issues with the License Tab in PA-450 as our new firewall is not showing anything on the license TAB. I have added the devcie in the support portal but to fetch the license i am not able to see anything in the tab. I upgra

...

Process cp-path_monitor received user event hbUpdate

Dear Team,

 

I'm using 9.1.12 PAN-OS

Recent firewall has temporarily switched certain interfaces to 'non-function' with the logs below.

 

masterd_apps.log
Process cp-path_monitor received user event hbUpdate 60 0.0938

 

I would like to know what the

...

  • 24006 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors