This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 198 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 880 Views
  • 0 replies
  • 0 Likes

IPSec Child-SA rekey negotiation fails

Our customer encounter intermittent connectivity issue with IPSec IKEv1 during phase 2 rekey of IPSec Child-SA. We open case with the IPSec peer device vendor, they mention that PAN is not sending message to R2011 (IPSec peer) for deleting the SA whe

...

Configure L2 service on Active-Active Mode

I'am using PAN-PA-3220

We want to setup this model with:

1. HA (active-active)

2. Interface configuration using Layer 2 configuration

 

Is it possible to done it?. as when I try to create Layer 2 configuration. It always pop out error "Layer 2 unable

...

Hazzuan by L0 Member
  • 1172 Views
  • 1 replies
  • 0 Likes

SSO not working properly

I have just setup SSO in our new eng panorama. When I tested it initially it gave me the error message "Error Displaying SAML error response page". I reached out to our team and it was noticed that the new saml app had fewer claims and attributes tha

...

Bumenang by L1 Bithead
  • 3874 Views
  • 1 replies
  • 1 Likes

Resolved! Moving some connections to the New PA

 

We have this setup for one site 

 

------Dis sw--------------Edge switch stack of 3 ----------40 users 

 

we need to move few users behind the PA  .

 

what can be best design for this as we only need to have 5 to 10 users behind the PA  850.?

 

Should we co

...

MP18 by Cyber Elite
  • 6119 Views
  • 15 replies
  • 0 Likes

Certificate delete

Hi

 

i have a problem certificate delete. But sow error Failed to delete Certificate - CaptivePortal.  °  CaptivePortal cannot be deleted because of references from:

 

i look to to ssl/tls service profile list not show profiles. plase help mee 

btadmin by L1 Bithead
  • 1638 Views
  • 6 replies
  • 0 Likes

Resolved! Prisma Cloud Workload Protection

Hello,

I'm playing with the API to get hosts' vulnerabilities and images' vulnerabilities in Prisma Cloud (CWPP) (documentation: https://pan.dev/prisma-cloud/api/cwpp/get-images/)

Following the documentation (which is great by the way) I noticed ther

...

Suspicious URL detection by cortex

Hi All,

 

Will cortex be able to detect if there is any malicious URL clicked by user?

Also, would like to know how cortex detect the ransomware attack.

 

Regards,

Sakshi Seth

 

Proxy SG to Palo alto policy migration

Hi,

 

Is there any automation tool through which we can migrate all our proxy SG policy rule, object and object group to Palo alto. Or else if there is any alternate option then please let me know.

Global Protect Linux and Strongswan

 

I had to test IPSec connection on Linux using strongswan as part of a support case i was working on and i collected a lot of good information on how to get this working. So i thought i would share it with you.

 

Tested on PANOS 7.1.2, Ubuntu 16.04, St

...

Xauth Option.png
ipsec.png
Client Success.png
system Logs.PNG
Davyboy by L1 Bithead
  • 12846 Views
  • 4 replies
  • 3 Likes

Cortex XDR agent change managing server

Hi All,

Looking for best way to migrate cortex XDR agents to new tenant in bulk.
I have downloaded all the hostnames in excel format and when i try to paste it on the XDr console filter section it doesnt work.

Please comment

Resolved! HOW TO CONFIGURE .1q - VLAN TRUNK

     Hi guys ,


I have a lots of doubts about how to configure .1q vlan TAG / TRUNK on PALO ALTO FIREWALL.

It`s possible to work with layer 3 interface ?
I don`t found any documents here.


Does anyone have something to help me.

Nbest Regards


THiago LIma.

Thiago by L3 Networker
  • 3238 Views
  • 2 replies
  • 0 Likes
  • 24013 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks