General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 191 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 873 Views
  • 0 replies
  • 0 Likes

IPSec tunnel over IPSec tunnel not working

Has anyone ever done tunnel-over-tunnel on the PaloAlto (to Cisco/etc.)? I have been having problems getting traffic to return to a remote site. I normally have multiple IPSec tunnels to remote sites (carrying specific isolated VLAN/networks) over a

...

VPN tunnel flapping after the 11.1.4-h7 upgrade

We have upgraded our FW to 11.1.4-h7. After the upgrade the IPSEC tunnels were working fine. But from the past 2 days we are observing that tunnels are flapping and one of the tunnel is down due to phase-1 negotiation failure due to timeout.

 

Does a

...

PAN-OS 10.2 preferred release Vs. vulnerabilities

Hello everyone,

 

  maybe this is a silly question, but as far as I can see the current PAN-OS 10.2 preferred release dates back in november and does not include fixes for recently discovered vulnerabilities (CVE-2025-0108, for example). I usually pu

...

grenzi by L3 Networker
  • 531 Views
  • 4 replies
  • 0 Likes

Lab license for Palo Alto

How hard is it to get a lab license from a Vendor such as CDW.   Last week I  went to their website and purchased 'PAN-PA-410-USG-BND-LAB'.  

 

Today I looked and saw it as canceled.  Still trying to find out why it was canceled.   The cost of $104 w

...

Resolved! CVE-2025-0110

 

 

 

 

"Can anyone confirm whether CVE-2025-0110 affects Cloud NGFW firewall? Any relevant details would be appreciated."

Cloud NGFW for AWS 

Cloud NGFW for Azure 

 

 

https://security.paloaltonetworks.com/CVE-2025-0110

Suraj639 by L0 Member
  • 539 Views
  • 1 replies
  • 0 Likes
Community Expert Verified
Community Expert Verified

Upgrade path question

We have a second Palo Alto that we want to upgrade and then use as a High Availability device to work with our current operational firewall. It had been used before, but is currently offline.  I was following the upgrade path from 9.0.13 to 10.2.13-h

...

transfering license without a CSP account

Hello,
I hope someone can help me.
I tried to find myself the answer but looks like I'm getting a chicken-and-egg problem.
To accelerate the learning curve, I've bought a PA-440 on ebay.
To transfer the device, I need a CSP account but since I don't have

...

Antivirus mismatch without license

We have a cluster of firewalls with an antivirus mismatch alert.

The thing is that there is no antivirus license.This issue happpened after one of the nodes went down and we had to perform a factory reset.

We are seeing this by cli:

av-version: 0

av-

...

Palo Alto Networks Approved
Palo Alto Networks Approved

Secondary IPSec tunnel with Prisma Access always down.

Dear community!

 

I have a dual S2S VPN configuration with Prisma Access with static route path-monitoring as well as tunnel monitoring.

The secondary tunnel is always down, only comes up when primary goes down. Do you know if this is expected behavi

...

Carracido by L3 Networker
  • 2430 Views
  • 3 replies
  • 0 Likes
  • 24007 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels