General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2894 Views
  • 2 replies
  • 14 Likes

PAN OS 10.2.2 2-FA OTP issue

Dear community

 

After upgrading my Palo Alto 820 to PAN-OS 10.2.2 I've faced with 2-FA OTP issue. The device requests for the OTP but responds after 3 minutes with Timeout. There was no issue on the network and the OTP server side. OTP server sends

...

Resolved! adding Switches to HA Pair

I would like to add a 24-port switch to each Palo.  To maintain HA redundancy, I just have to run the HA Control across the switches right?  Does the Session Link have to go through the switches too? 

i have the palo alto vm 10.0.3 version , need help

Using this image for labbing on EVE-NG pro and i cannot create a working active standby cluster as both instances of the node that i created have the same serial number, is it possible to change the serial number of the node upon creation? what is th

...

kbk983 by L0 Member
  • 1233 Views
  • 2 replies
  • 0 Likes

Resolved! Changing zone name in 100 security policies?

Hello Experts

 

I want to change the zone name. There are 100 security policies associated with that zone. How I can do it quickly, like is there any replace pattern command available (like in Juniper) to replace th zone name any where in configuration

...

GlobalProtect Cloud Services Route Precedence

We have had overlapping subnet scenarios where someone is connecting using GlobalProtect Cloud Services from a subnet that overlaps our internal subnet and, as they have a more specific route, access to internal resources is failing as the taffic is

...

TCP session timeout behaviour

Hello,

 

I have a question about the mechanism of TCP session timeout on PA FW. Assuming that default TCP timeout on PA device is 3600 seconds. What happen after a TCP session is idle after 3600 seconds ? Does the FW send TCP RST at each endpoints ? Or

...

Intergate TWSITCLI with PRISMA CONSOLE

We are looking for documentation/Actual Steps ,  How can we integrate TwistCLi which is being deployed over a VM Linux machine and currently being used to scan Tar container image files with Prisma console

Resolved! User-ID-Agent wrong mapping with specific IPs

Hello,
since a few days we see strange things with User-ID-agent.
For some specific IP-addresses there are shown wrong users. This users even are not in the internal AD, they are just external VPN users invited from Azure. But they are mapped to intern

...

  • 24016 Posts
  • 99 Subscriptions
Top Solution Authors