This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1696 Views
  • 0 replies
  • 0 Likes

PA850 10.0.8-h2 upgrade to latest

Hello,

 

We have a customer with PA-850 running 10.0.8-h2 and they want to upgrade to latest.

As this firewall is placed in totally isolated environment and the customer wont allow to connect internet on firewall.

This firewall is in HA peer mode. 

A

...

Resolved! Active / Active HA IPsec tunnel setup.

Hi,

 

We have an Active/ Active firewall between 2 datacenters.  We have configured a single tunnel on a floating IP that is Active in Datacenter A to a remote Partner.  Firewall in DC A is currently in Active Secondary State,  Firewall in DC B is cu

...

zGomez_1-1681909533187.png
zGomez by L3 Networker
  • 3991 Views
  • 1 replies
  • 0 Likes

Enquiry regarding Palo Alto Firewall Model: PA-3250

Hi Palo Alto support,

 

I would like to enquire the following questions pertaining our existing firewall.

  1. If our Palo Alto fw fails in the OS layer, does the traffic still passes through?
  2. If our Palo Alto fw fails in the hardware layer, does the traff
...

Resolved! Multiple Global Protect gateways on same firewall

I have a PA-3020 that will have two ISP connections. Primary ISP interface will be used for the Global Protect Portal and Primary Gateway using tunnel.1. Is it possible to have a second gateway using tunnel.2 on the same firewall using the secondary

...

DNS Signature Lookup Timeout Error

I'm seeing quite a lot of messages logged in the syslog output from my PA VM-100 running PAN-OS 10.0.0:

 

Aug 19 07:31:29 firewall-1 1,2020/08/19 07:31:29,007051000047085,SYSTEM,general,2560,2020/08/19 07:31:29,,general,,0,0,general,medium,"DNS signatu...

Resolved! Wildfire-Content

Hi Guys,

 

On Panorama - Device Deployment -  Dynamic Updates, I see WildFire-Content and WildFire.

 

Wildfire-Content: there are releases but they have never been downloaded nor installed. 

 

Wildfire: the releases downloaded and installed per sched

...

tinhnho by L3 Networker
  • 1922 Views
  • 2 replies
  • 0 Likes

ASA migration to PA

Hi Team,

We want to migrate our firewalls from cisco ASA to Palo Alto. Instead of performing hot cutover, we are thinking the other option by connecting them inline to existing firewalls so that it will just monitor all policy and etc, which will hel

...

NTP Sync 10.1.6 PA-220

Hi all,

I'm getting this NTP status message.

I'm quite sure it did initially sync but then reverts to this state.

What exactly does "rejected" mean? The NTP server was reachable but has it been knocked back for some reason.

 

NTP state:

NTP not sync

...

CBrookes by L1 Bithead
  • 6922 Views
  • 8 replies
  • 0 Likes

Resolved! NAT'ing subnets - Larger to smaller? Will it work?

I'm moving some rules from an ASA we will be decommissioning at another location to our local PA-5220 for an IPSEC tunnel that we are migrating. The existing rule set on our ASA is NAT'ing our /16 subnet onto a /24 which technically could be an issue

...

Resolved! Dynamic update scheduling question

Hi Everyone,

 

 I manage a few firewalls (same model) with a template under Panorama; my firewalls do get Wildfire updated but I'm not sure how often they get updated. On Panorama, I look under Device -Dynamic Updates-'TemplateFWs', I don't see anyth

...

tinhnho by L3 Networker
  • 2100 Views
  • 2 replies
  • 0 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks