This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 381 Views
  • 0 replies
  • 0 Likes

link-change still informational severity?

Can someone explain to me the rational behind allowing an interface to drop and having the link-change log a down state and yet have it be INFORMATIONAL severity level? I saw an old question about this and it seems somewhat ridiculous?  We had filter

...

Untagged subinterface NAT

Hello all,

 

I've been reading on untagged subinterfaces and I'm not sure this scenario would even work for what I want to do. Basically I want to segment different two zones coming over the same interface. I usually accomplish this by creating a vir

...

ClintL by L2 Linker
  • 1940 Views
  • 3 replies
  • 0 Likes

lacp worker poll timer interval too short

Software Version 10.1.8-h2

2023-03-17 16:18:48.037 +0000 phase1 completed
2023-03-17 16:19:35.133 +0000 start phase2
2023-03-17 16:19:35.133 +0000 Configuration not changed.
2023-03-17 16:22:41.815 +0000 Warning: pan_lacp_worker_poll(pan_lacp_thread.c:6

...

Resolved! PA integration with Solarwinds

I am trying to configure a PA850 to send trapns to Solarwinds for monitoring. I have configured the SNMP trap and am currently in the "SNMP Setup" page. In regards to views, how do I find the OID and the MASK for it. Is that required or it there a wa

...

Resolved! User-ID Group Mapping not working in a security policy

Hi,

 

I have searched and found similar posts but none seem to have a working solution for this...

 

I have a simple security policy to deny access to a VM located in the 'trust' zone if it matches a user in the user group created on the AD server.

 

I've

...

Add Multiple DNS Suffixes

Is there a way to add more than one DNS suffix to DHCP?

I know in Mac OS X I can add multiple search domains, but I don't want each user to have to do this, nor type in our long domain names each time either.

Thanks!

Resolved! Threat Logs: Countries with no IP

So we have 'Use X-Forwarded-For HeaderEnabled for Security Policy' enabled, and are using it policies.

The threat logs show the real Source Country but no address under X-Forwarded For IP Column. Although when exported to CSV many logs show the real

...

image.png
image.png
raji_toor by L4 Transporter
  • 1688 Views
  • 2 replies
  • 0 Likes

Avaya 9611G/4610SW VPN to PA-500

Has anyone had success connecting Avaya IP phones via VPN to PA devices?  I am able to complete IKE Phase 1 authentication, but fail Phase 2 due to local/remote proxy IDs not found:

'IKE phase-2 negotiation failed when processing proxy ID. cannot fin

...

itmanager by L1 Bithead
  • 22452 Views
  • 22 replies
  • 0 Likes

Resolved! IPSec VPN Setup for Avaya Phone

I am attempting to setup an IPSec VPN tunnel to connect to remote Avaya phones. I am not sure if I am doing it correctly. I've set up a new IPSec tunnel and configured it to use dynamic IP for remote peers. I am not sure if this is correct or not. It

...

mario11584 by L4 Transporter
  • 22508 Views
  • 16 replies
  • 0 Likes

Resolved! Slow VPN performance in >ONE< direction

Hello Community,

 

i have a strange problem regarding VPN.

 

Here is my setup:

 

HQ:

 

- PA3020 vsys2 connects to a 100/100Mbit WAN. (local, stable provider)

- Public IP is configured directly on a interface of the PA

- Speedtest from local network in HQ commi

...

  • 23837 Posts
  • 112 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks