General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2978 Views
  • 2 replies
  • 14 Likes

Nintendo Issues with Nat

We have a couple of Nintendos in our district.  I have a NAT Policy setup which is allowing them to get to the internet. Right now it show NAT B.  This is after rebooting them.  I have two separate NAT policies because two nintendos on seperate IP ad

...

tnewton_0-1666373614883.png
tnewton by L0 Member
  • 1199 Views
  • 3 replies
  • 0 Likes

Failover to passive no traffic passes

Hi all - have been working on upgrading all our firewalls from 9.1.13 to 9.1.14 and ran into an issue last night with one of our Active/Passive 7050 pairs. When I failed over to the passive FW our users lost internet connectivity, once the active FW

...

Resolved! Cortex XSOAR TLS handshake error

Hi friends,

 

I am having an issue with TLS errors when I check the Demistro service status. Not sure where to look to resolve the issue, any advice would be great.

 

Cheers,

Jason



Please note you are posting a public message where community members a...

hambeezy by L0 Member
  • 1340 Views
  • 1 replies
  • 0 Likes

Palo alto 220 Disk issue

We have PA 220 at few of our site. Multiple times a day it's getting "Disk usage for / exceeds limit, 97 percent in use, cleaning filesystem" Sometime it goes to non-functional state because auto disk cleanup won't work and it will fill out 100%. I h

...

hpatel11 by L2 Linker
  • 1772 Views
  • 3 replies
  • 0 Likes

RTCP issue for matching policy

Hi,

 

We are having a issue with RTCP traffic. The RTCP traffic is jumping the rule configured for this and matching the last rule (bypass).

 

The filter for the correct rule is application rtcp. We see that the application is identified but sometime

...

BigPalo by L4 Transporter
  • 2489 Views
  • 7 replies
  • 0 Likes

Resolved! interface-management-profile - CLI

Hello

 

When I am configuring sub-interface (or interface) with CLI from Panorama as :

 

set template [name] config network interface ethernet ethernet1/x layer3 interface-management-profile [Profile] units ethernet1/x.x comment [comment] tag [xx] ip

...

Active/Active failover triggers for multiple Vwire?

Hello,

 

I've been looking for some time docs which closely describe PA Active/Active setup for only Vwire interface mode (multiple defined Vwire's), especially failover triggers like a link or path monitoring, but no luck. I decided to start with th

...

Tician by L1 Bithead
  • 1174 Views
  • 2 replies
  • 0 Likes

GlobalProtect stops to connect

Hi all,
GlobalProtect stopped to connect to server. 
So it works before ( I did not install any new software, firewals, proxies, .... etc) It contiue work under VirtualBox machine, so it is not a problem of my internet provider, but it stops to connect

...

BGP AS-Path allow

Hi All,

 

I suspect the answer to this is in the Advanced Routing in PanOS 10.

 

We have configured a new system as Active-Active and BGP. The firewalls are in different DCs, the DMZ side of the firewall can talk to routers in both DCs but only its l

...

a.jones by L3 Networker
  • 1565 Views
  • 3 replies
  • 0 Likes

Allow traffic other than IPSec

Hi all,

 

Site A

Source Zone: test-DMZ

Interface: ae 1 (172.16.1.1)

Tunnel Interface is in internal-trust zone.

Static route set to destination 10.10.10.1

 

I have an IPsec tunnel between 2 sites. 

However, i want to allow traffic from other sources

...

mike.07 by L1 Bithead
  • 1090 Views
  • 2 replies
  • 0 Likes

How to whitelist specific URL with path included.

I want to whitelist a specific URL with path. Eg: https://live.paloaltonetworks.com/t5/forums/postpage/board-id/members_discuss

I tried adding it the same as it is in URL category and created the following rule:

Source: Ip of source

Destination: ANY

...

Amey05 by L0 Member
  • 1209 Views
  • 1 replies
  • 0 Likes
  • 24038 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors