This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4452 Views
  • 0 replies
  • 0 Likes

Resolved! Slow network traffic after deploying PAN 2020 device

We are experiencing a gradual change in our network speed since we deploy an Inline PAN 2020, the internet connection has slowly dicreased, is there any particular test or place where I can go to verify that the PAN device is not the reazon of this change? I have checked our network speed from the ISP link directly and we have a 20/20Our network...

Application Statistics in Custom report on specific IP address or range?

I've reviewed what I can on the custom reports online as well in KP, but can't seem to find any way to create application based statistics filtered on specific IP address or ranges as it doesn't appear that DB has IP addresses info. Does anyone know of anyway to provide application based info filtered on IP? Ideally, even something like the ne...

entadmin by Not applicable
  • 3230 Views
  • 2 replies
  • 0 Likes

Resolved! Global Protect on overlapping networks

Hello everybody!I have a big problem with Global Protect and overlapping networks.I make you an example.-------------My local network is 192.168.10.xMy Global Protect Network is 172.16.x.xThe external network has the same class of my local network--------------If I connect my lapton in any networks everything works good but if the network has th...

Resolved! some reports modification inquiries.

hi,i have some inquiries just recieved from a customer i dont think its possible but lets see if its achievable :.1- can we convert second to minute in reporting. 2- can we convert bytes to Mbytes in reporting .i tried but could not find anything.BR

SSL Decryption and Application Default

Best practice for building security policy is. For allow traffic always define the service as application-default, that way you only create session for applications on there default port and only perform application ID for those session this reducing the load on the unit from both a session and application id perspective.This works great, until...

Combination Signatiure in Custome Vulnerablity Signature

Hi when I create new combination Vulnerablity Signatures ( for examples create new threat ID 48888 inlcude threat ID 40000 or 40001 )1) I am not sure if ID=40000 attack happend , if threat log both have two log are ID=48888 & ID=40000 log , or which one of them ?2) if I put the ID=48888 in Vulnerablity Exception list , when ID=4000 attack h...

JeffJin by L2 Linker
  • 1962 Views
  • 1 replies
  • 0 Likes

Can Panorama manage Firewalls with Overlapping IP

HI.We have a requirement to manage a number of Palo Alto Firewalls. Some which have overlapping IP Addresses.Is it possible for Panorama to manage an estate with this configuration almost like an MSSPMany thanksRichard

rimpey by Not applicable
  • 3228 Views
  • 3 replies
  • 0 Likes

Cannot Ping

Hi,I have a small problem. I cannot ping and access the ip address of my external interfaces although I can ping their default gateway. I already assigned interface mgmt for each interface and allowed ping, https, ssh and response pages but no luck. I will use this to remotely access PAN and enable SSL VPN.Please help.Thanks,Rex

DHCP Not releasing IP addresses

Called support they said 'known bug' upgrade to 3.10 . Did the upgrade and IP addresses are still committed (lease expired for months in some cases) and not being released and added back into the pool. Any ideas on how to solve this?

Intermittent User-ID with eDirectory

We're on a PA2050, v4.0.5 using eDirectory Agent 3.1.2 (Windows 2008 srvr) connected to two eDirectory servers v.8.8.5.Users are being identified on the PA, but not all packets or sessions are showing a userid.If I filter a single busy source IP in the traffic log, over the span of a couple of seconds I might see 80% of packets with the 'SourceU...

Restricting data accessible by admin user/group for ACC/Monitor etc

Hi All,Can I, in a system that is NOT running multiple vsys, restrict the information that can be accessed, seen etc within the ACC, monitor tab etc. Like a pre-applied data filter is overlaying the entire use?For example, having a login that is for the head of a division, such as marketing, and when that use logs in, the only informationdisplay...

KatanaNZ by L3 Networker
  • 2979 Views
  • 2 replies
  • 0 Likes

Qos - Rewrite DSCP field

Hi all,Can PAN (i've got a pan 500)rewrite the DSCP field for some type of traffic(by Policy-Based routing or any way of doing this)?Indeed i need to rewrite the dscp field of any RADIUS traffic on ef to make it appears on the WAN as a high priority traffic.I can ask to my provider to do this on its routers but i prefer asking nothing and master...

steria by L0 Member
  • 3271 Views
  • 2 replies
  • 0 Likes

Resolved! Copy Policy Between VSYS

We are getting ready to start using multiple VSYS on our PA. Want to find out if there is a way to move or copy policy and objects from one VSYS to another?We have many policies in our original VSYS1 and want to move those policies and objects into the new VSYS which are now going to be configured for different Divisions in our organization.

  • 24376 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks