This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 413 Views
  • 0 replies
  • 2 Likes

Resolved! Active / Active HA IPsec tunnel setup.

Hi,

 

We have an Active/ Active firewall between 2 datacenters.  We have configured a single tunnel on a floating IP that is Active in Datacenter A to a remote Partner.  Firewall in DC A is currently in Active Secondary State,  Firewall in DC B is cu

...

zGomez_1-1681909533187.png
zGomez by L3 Networker
  • 2769 Views
  • 1 replies
  • 0 Likes

Enquiry regarding Palo Alto Firewall Model: PA-3250

Hi Palo Alto support,

 

I would like to enquire the following questions pertaining our existing firewall.

  1. If our Palo Alto fw fails in the OS layer, does the traffic still passes through?
  2. If our Palo Alto fw fails in the hardware layer, does the traff
...

Resolved! Multiple Global Protect gateways on same firewall

I have a PA-3020 that will have two ISP connections. Primary ISP interface will be used for the Global Protect Portal and Primary Gateway using tunnel.1. Is it possible to have a second gateway using tunnel.2 on the same firewall using the secondary

...

DNS Signature Lookup Timeout Error

I'm seeing quite a lot of messages logged in the syslog output from my PA VM-100 running PAN-OS 10.0.0:

 

Aug 19 07:31:29 firewall-1 1,2020/08/19 07:31:29,007051000047085,SYSTEM,general,2560,2020/08/19 07:31:29,,general,,0,0,general,medium,"DNS signatu...

Resolved! Wildfire-Content

Hi Guys,

 

On Panorama - Device Deployment -  Dynamic Updates, I see WildFire-Content and WildFire.

 

Wildfire-Content: there are releases but they have never been downloaded nor installed. 

 

Wildfire: the releases downloaded and installed per sched

...

tinhnho by L3 Networker
  • 1418 Views
  • 2 replies
  • 0 Likes

ASA migration to PA

Hi Team,

We want to migrate our firewalls from cisco ASA to Palo Alto. Instead of performing hot cutover, we are thinking the other option by connecting them inline to existing firewalls so that it will just monitor all policy and etc, which will hel

...

NTP Sync 10.1.6 PA-220

Hi all,

I'm getting this NTP status message.

I'm quite sure it did initially sync but then reverts to this state.

What exactly does "rejected" mean? The NTP server was reachable but has it been knocked back for some reason.

 

NTP state:

NTP not sync

...

CBrookes by L1 Bithead
  • 5495 Views
  • 8 replies
  • 0 Likes

Resolved! NAT'ing subnets - Larger to smaller? Will it work?

I'm moving some rules from an ASA we will be decommissioning at another location to our local PA-5220 for an IPSEC tunnel that we are migrating. The existing rule set on our ASA is NAT'ing our /16 subnet onto a /24 which technically could be an issue

...

Resolved! Dynamic update scheduling question

Hi Everyone,

 

 I manage a few firewalls (same model) with a template under Panorama; my firewalls do get Wildfire updated but I'm not sure how often they get updated. On Panorama, I look under Device -Dynamic Updates-'TemplateFWs', I don't see anyth

...

tinhnho by L3 Networker
  • 1535 Views
  • 2 replies
  • 0 Likes

We Want to Hear From You! LIVEcommunity UX Survey

 

Hey Everyone! Got a sec? The Live Community Team would love to get feedback on your community experience! 

 

If you are interested in giving your feedback and earning a new community badge, please take this short survey before May 15, 2023.  

 

Th

...

Screen Shot 2023-05-04 at 10.46.37 AM.png
JayGolf by Community Team Member
  • 1031 Views
  • 0 replies
  • 3 Likes

Resolved! System Log Message "WFRTSIG: Unknown error."

Hey Community,

 

we have a pair of PA-3220 in an active/passive Cluster with panos 10.0.7 and since about 4 weeks we see the following system log entry almost every night around 11pm: WFRTSIG: Unknown error.

We see this entries on both devices (active a

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks