This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Whitelisting IP Addresses

I am trying to whitelist some IP addresses. I added the IPs to our allow policy in the URL category section. Is there anything else that I should be doing? The purpose of this is to allow our printer providers servers so our printers can communicate

...

Prioritize Tunnel Static Route over L2 physical route

Hi, 

 

I have an IPSec Tunnel between a remote central site and a PA-220. 

 

This tunnel advertises it's remote internal network in 10.100.10.0/27.

 

A static route has been created in the PA with a metric > 1 (10), to route traffic in direction of

...

PA-1.png
pa3.png
pa-2.png

Resolved! Aggregate Interface with sub-interface

Dear all,

 

I am designing a new network for a client and they have lots of zones. my idea is to create an aggregate interface (ae1) and create sub-interfaces for the individual zone.

I read aggregate interface can be done on SD-WAN level and could n

...

Shadow by L2 Linker
  • 3669 Views
  • 2 replies
  • 0 Likes

Civil3D 2023 and Global Protect

Greetings Programs,

 

We have a client that is an engineering firm. They have a few remote engineers and we are starting to see issues with Civil3D 2023(AutoCAD).

Majority of these end users have Windows 11 OS with Global Protect installed on it to V

...

EDraper by L0 Member
  • 1128 Views
  • 1 replies
  • 0 Likes

FQDN object not resolved

Hi,

 

We have this fqdn object created: 

2021-01-08 12:26:14.872 +0100 dnscfgmod: Fqdn SIEMENS OWNCLOUD SERVER/cco.siemens.com could not be resolved

 

If i run a ping from MGMT A interface is resolving:

ping host cco.siemens.com
PING cco.siemens.com (212.23

...

dns.JPG
BigPalo by L4 Transporter
  • 3752 Views
  • 4 replies
  • 0 Likes

Panorama stop showing logs suddenly

Hi,

 

We have a panorama M100. Panorama is showing logs but suddenly stop doing it. We can not see any logs until we restart logd proccess or appliance. Panorama version is 8.0.8

 

 Why is this happening?

Resolved! Recommended action for real-time-detection URL category

Can you please help me clarify the new real-time-detection category, which is covered by the URL filtering license? 

 

According to the article the Advanced URL filtering  "real-time-detection" URL category is not a classification by itself, but a re

...

batd2 by L4 Transporter
  • 7322 Views
  • 6 replies
  • 1 Likes

Resolved! User resetting expired password through Global Protect

Is a user able to update their password (when its expired or a force change is required) in Global Protect when using SAML Azure AD authentication? There is this older document saying its possible when using Radius with PEAP-MSCHAPv2 authentication b

...

Claw4609 by Cyber Elite
  • 7593 Views
  • 1 replies
  • 0 Likes

Root certificate install

If I install a new certificate why does the root certificate have to be installed as well with it (well that is what I saw on a demo) ? I thought the root certificate was needed more on the client side or other firewall connecting to the one I'm refe

...

Cortex XDR on mobile phone

Hi all,

I am running Cortex XDR and when I click on the all end points, I can see the endpoint device like PC and server. I have install the endpoint agent on those PC and server. They are Domain joined PC and server. How can I install this Cortex XD

...

lprasad by L1 Bithead
  • 2415 Views
  • 5 replies
  • 0 Likes

Resolved! PA-220 Reboot

Hi Team,

Firewall got rebooted instead of generating a tech support file can we do any other troubleshooting to check why the firewall was rebooted. If i generate the tech support file i have to go to Palo to check what it is and wait till i get the

...

Resolved! PA 500 Cisco 3560

Hi there, 

I am totally new here in Paloalto firewall. I have PA 500 and want to do lab test and I want to find a basic instruction to set up PA to connect internet and also connect to Cisco switch. I am very familiar with Cisco ASA and switch since

...

phugiay by L2 Linker
  • 4738 Views
  • 13 replies
  • 0 Likes
  • 23580 Posts
  • 103 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks