This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4114 Views
  • 0 replies
  • 0 Likes

Is it possible to view and configure VPNs as a vsys admin?

Is it possible to view and configure VPNs as a vsys admin?It appears that the VPN configuration is only part of the device admin, however I choose this option I am unable to limit the access on a per vsys basis. Am I missing something something? If not, then this should be corrected in future releases, as it makes sense to be able to create VPNs...

bbsoc by L2 Linker
  • 2342 Views
  • 2 replies
  • 0 Likes

Recieve Errors on connection to Cisco Nexus 7000

HiI have a HA pair of PA-5020 and a single PA-2020 connected to switchports on a Cisco Nexus 7000I'm seeing receive errors on all the physical ports on my PA boxes but nothing on the Cisco device.Duplex is set at auto, speed set at auto for both ends.Any ideas what these errors could be? I have applied bpdufilter on the Nexus interface and the ...

scooby59 by Not applicable
  • 6656 Views
  • 2 replies
  • 2 Likes

Resolved! Filter OSPF Area

Hello,I need to filter OSPF areas so that area 1.1.1.1 only sees his routes and area 0.0.0.0. I do not want him to see area 2.2.2.2.Is this possible?Thanks,Randy

rmnelson by Not applicable
  • 5124 Views
  • 4 replies
  • 0 Likes

OSPF multipath L2 FIP

Hi, We recently purchased two PAN 5020 Firewalls. I had two easy questions. We were wondering if they support OSPF multipath path (either equal cost or unequal cost).I was also wondering if I can configure muliple Floating IP address in the L2 mode? Does it matter if I'm in Active Active or Active Passive?Thank you

proxy squid in a DMZ

hello,I put a squid proxy in the DMZ zone with address 192.168.1.2 it is connected to the PAN - 192.168.1.1 and I trust zone to the untrust lan and another to the internet and I can not ping the proxy from the laninterface pan to lan 10.155.10.10my ip address 10.155.10.11i dont know the route that i would make it

Having trouble configuring IPSec tunnel (PA-500)

We have a VPS system to which we need to grant access to our private office network. The VPS is in a cloud service so there is no networking gear that we can use for the vpn end point. Our office network is behind a PA-500 firewall.The VPS is a CentOS linux system that I've configured to use racoon. I've tested this in my staging network with...

safecloud by Not applicable
  • 3096 Views
  • 3 replies
  • 0 Likes

User-ID 4.1.2-2 and Exchange

I am attempting to gather user to IP mapping for exchange users with User-ID agent 4.1.2-2. I am accessing our exchange server using the iphone mail app, but no information is for my IP address. I know there is a known issue logging IMAP or POP3 users, is there an issue when using the iphone mail app also?

User-ID / group mapped incorrectly

Hi all,I've wanted to block some sites for specific users and created an AD group on my W2K8 R2 DC. Unfortunatly I have some problems that I haven't encountered before.When checking the user I see the user is a member of my test group, so far so good.> show user user-IDs match-user somedomain.local\testUser Name Vsys ...

ebo by Not applicable
  • 3470 Views
  • 2 replies
  • 0 Likes

Application Logmein identified but not dropped by rulebase

Hello,Sorry, but I hav implemented a brand New PAN solution with Url cat and AV license.All configuration works find. I have a visitor zone on a DMZ and I want them to access Internet but with my Url Categorisation, so I can't let them use Remote access application.I Have implemented a rulebase with[...]Name "Rule 30"Src Zone "DMZ"Src "DmzUserN...

d_aznar by Not applicable
  • 2446 Views
  • 1 replies
  • 0 Likes

Resolved! Cannot get OSPF to work through a tunnel interface..

Hello,I have been working on my PA-500 trying to get OSPF to work through an IPSEC site to site VPN.I cannot get OSPF to complete. Looking at the status, I see LSAs sent, but none received.I verified that the other end is configured exactly the same, and even matched them to what I had in my old firewall that I just pulled out.Any help apprecia...

mbehlok by L0 Member
  • 8428 Views
  • 4 replies
  • 0 Likes

VPN SSL - Verification of a login belonging to a AD group

Hi support,I have a question regarding the authentification of users through the VPN SSL.Here is the situation:Login of the SSL VPN user: AdminLoginPassword of the SSL VPN user: AdminPass SSL VPN name: AdminSSLVPNAuthentication Profile associated with AdminSSLVPN: AdminAuthProfilAdminAuthProfil authentication method: Radius serverAdminAuthProfil...

novidys by L1 Bithead
  • 6137 Views
  • 7 replies
  • 0 Likes

Site is not loading

Dear All,I failed load below site eventhough the url filtering is off. Any idea? This site is working well in dsl connection.http://www.soti.net/ThanksAsanka

Asanka by L2 Linker
  • 2043 Views
  • 1 replies
  • 0 Likes

on Palo Alto Certificate create

We create a certificate on our local CA. We want to decrypt traffic in Palo Alto using this certificate. We decided to use the CN as "*" to match all destination hostnames the client will use. We installed the certificate and the intermediate and root certificates on Palo Alto but we could not be able to decrypt the traffic via this certificate....

L2 with Aggregate

Hi We would like to configure L2 with Aggregate between PANOS (4.1 - PA5050) with cisco switch - After we do L2 Aggregate , and assign IP Address on VLAN , we find that when we ping to this IP Address , there are many request-timeout. - If we configure L2 and set IP on VLAN only (without aggregate), there is no problem (Ping smoothly...

apirachat by Not applicable
  • 2315 Views
  • 1 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks