This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

CryptoCard Card.

When using the Cryptocard authentication server we have had issues where no radius packets are coming through the PA500 on version 4.0.1. When the packet capture (tcpdump) was run no packets appeared on the interface.....The only way to solve this problem was to upgrade to 4.0.4, the latest release. Magically this worked. I require some sort o...

amansour by L4 Transporter
  • 2357 Views
  • 2 replies
  • 0 Likes

CLI ping and traceroute resolving ip

Hi,In the GUI the PA is resolving ip address by quering the dns server. But with CLI commands like ping and traceroute it doesn't seems to do DNS resolving. I think it should be because there is a CLI command no-resolve.Any ideas why it isn't resolving in the CLI?

LDAP Error - AD Integration

Hihas anyone encountered the following error.When i type the following commandenayat@fw-tec1-pa2050>show user ldap-server stateLDAP server HO_LDAPBind DN : zajil\fwadminBase : dc=zajil,dc=comGroup Filter: (None)User Filter: (None)Servers : configured 1 servers192.168.100.10(389)Last Action Time: 55 seconds ago(took 8367389 seconds)Next Act...

User-ID agent and 300,000 LDAP UID's

I need to run user Identification of a Sun-One LDAP server, that has two main classes for users, totalling 300,000 users, in one geographic location.What is the maximum number of entries a user-id agent can handle/cache etc?Would the best configuration here, be to use multple agents, and hae each agent pull UID's using the object class filter?So...

KatanaNZ by L3 Networker
  • 5667 Views
  • 6 replies
  • 0 Likes

ldap through PA failing randomly

we're having a problem with logging into servers in our network that connect to an ldap server that is behind the Palo Alto firewall. The PA recognizes the sessions as ssl going over 636/tcp. Our rules allow these connections, and most of the time when we try to log in to a server that authenticates with the ldap server behind the firewall it wo...

bowings by L1 Bithead
  • 5618 Views
  • 5 replies
  • 0 Likes

Resolved! Avoiding Certificate Error With Captive Portal

I was able to get Captive Portal setup successfully, but is there a way to prevent IE from complaining about a certificate error to get to the captive portal? I probably won't be able to use it because of this error, it would be too confusing to some of my users.Thanks for any help.

Two Virtual Routers and NATing

Hello,We currently utilize dual ISP's as part of our business continuity plan and it looks like we have most of our PBR's setup appropriately. I am trying to figure out a way to create a static NAT entry on ISP2 via VRF that will go to the Core NetworkISP1 (L3-Outside) ISP2 (L3-Outside2) | ...

jschelert by Not applicable
  • 3103 Views
  • 2 replies
  • 0 Likes

Exchange 2010 - Applications Required?

We have a Palo Alto in front of an Exchange 2010 CAS server.The Palo Alto is in a back-to-back config with a "dumb" firewall in front of it that only allows port 443 inbound.The Palo Alto has the SSL cert from the Exchange box on it, so does SSL inspection on all the inbound traffic.My questions is, can anyone who has Exchange 2010 behind a Palo...

HA interfaces link fail questions

According to manual, active-standby cluster..• If one HA interface fails, synchronization continues over the remaining interface. If the state synchronization connection is lost, then no state synchronization occurs. If the configuration synchronization is lost, heartbeats are lost. Both devices determine that the other is down, and both become ...

raymondl by Not applicable
  • 3095 Views
  • 2 replies
  • 0 Likes

traffic between management IP addresses in HA ???

hello guys,i have a silly question for today. am testing HA in my lab ....... i have noticed on PAN dashboards that it shows the management IP address of it's HA partner!! is there any traffic concerning '' HA '' that moves between the managements interfaces ??? for me it should not be the case .... if you checkout attached screenshot PAN mana...

Passive Logging

Hi - we are running 2x PA4050 in version 4.0.4. We are sending all logs to Panorama. We have them in active-passive mode. I see logs for both the policy and alarms (eg an etherchannel leg is lost - I get port & HA events etc) from the active. However, I can't get any logs (though it is logging locally) from the passive to Panorama. If I pul...

fmd by L3 Networker
  • 2935 Views
  • 2 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks