This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

Resolved! NAT and Proxy Arp and Interface Addresses - help understanding

I'm having trouble understanding why some recently added NAT rules did NOT Proxy ARP on our outside ISP interface as I expected it to. I'd setup some NAT rules both using a bidirectional outbound rule NAT'd to an outside interface address (new one, not the existing one that was assigned) and an incoming only NAT rule mapping a new outside addr...

TonyDeHart by L4 Transporter
  • 20457 Views
  • 11 replies
  • 0 Likes

Resolved! HA1 not UP when HA interfaces have same mac address

Hello Team, I hope you can help us, We're also already planning to create a TAC case for this. We have provisioned 2 vFW on RHOSP.We configured the 2 fw on HA Active-passive.HA1 > e1/8HA1 Back-up > e1/9 Now the data interfaces e1/1 to 1/7 has to have same mac address right for HA failover to be seamless as per below link We have disabl...

Panorama HA secondary panorama diferent PSK key

Hi All, I have created a panorama HA cluster through which I manage a firewall in SD-WAN technology. when the active panorama is no longer available and the secondary panorama becomes active, I want to release templeate to the device, it makes me revert on the device. I have identified that the problem is when sending template changes from t...

Using Ansible to export stats-dump with specific time range

Good morning, LIVE Community. I'm trying to export stats-dump from a remote PaloAlto device to my local computer using Ansible. Prior to trying out Ansible, I'd usually use this command on the remote device to export stats-dump to my computer: scp export stats-dump remote-port <remote_port>start-time equal <YYYY>/<MM>/<DD&...

agatha by L0 Member
  • 1846 Views
  • 1 replies
  • 0 Likes

Workflow interruption by wa_3rd_party_host_64.exe interfering with app focus

When I am working in ANY other program I find many times my workflow is being interrupted and current program looses focus when wa_3rd_party_host_64.exe has started. Is anyone else getting a problem like this? How often should my active vpn be triggering wa_3rd_party_host_64.exe ? See attached EVERY time I see these processes current prog...

ScottQ by L0 Member
  • 4025 Views
  • 1 replies
  • 0 Likes

Execution error on a playbook solved with job

Hi all, I am using XSOAR 6.10.0Activity I am performing:Running a playbook (consisting of 3 tasks):1) task that invokes an automation that from an API call generates the response in CSV format.2) Send-mail task, from the attachIDs and attachNames of the CSV file generated by the previous task sends it as an attachment to the email.3) Closes the ...

MF762 by L1 Bithead
  • 1956 Views
  • 1 replies
  • 0 Likes

Resolved! Panorama and PA-440 DNS proxy

Greetings, I am running Panorama and PanOS 10.2.3 with 30 PA-440s running sdwan. I'm trying to configure DNS proxy for a new business requirement and am having issues. The config for dns proxy is different from Panorama to the PA-440. On Panorama you create a DNS server profile and tie that to the DNS proxy. On the PA-440 you configure t...

Resolved! PA-HA Server - Drive Error

we are getting a commit error and HA peer end status "Non-functional drive error detected". Then we suspended the Secondary firewall after making the local device function it's showing a passive state and now it's working as expected

SANKETM by L1 Bithead
  • 5099 Views
  • 1 replies
  • 0 Likes

Issues with phase 1 of ipsec

Hi, i've been having an issue with getting the phase 1 of our ipsec tunnel to a customer up who is using a watchguard firewall.As far as i can see our phase 1 settings match up, but i keep getting the no proposal chosen error in the logs.I've attached screenshots of the settings and also a packet capture receive result. I've been a bit stumped a...

User names with two different domain prefixes - inconsistent rule application

I'm semi-reposting this because it didn't get any bites in another topic/discussion area and this seems to be a lot busier. I'm having an issue where are users are showing up in the logs as both domainname\username and domainname.com\username. Whenever I show the user names and group listings on our firewall from the CLI they show as domainn...

Domain config on Split Tunnel

Hi All, I have excluded few of the domains in Split Tunnel config. I am not able to verify if the split tunnel is working curretly. If we check the route print we are not seeing any difference in the route table. Is there any way i can test this or confirm the split tunnel is working? Also is it necessary to * before the domain? For example *pro...

Bandthwidth Issue

We are getting hardly up to 6 Mbps download & 60-70 Mbps upload. The problem is with download. When we connect the laptop directly with Tata, it is showing full bandwidth during speed test. But while connecting through Firewall, the download speed is showing between 1-6 Mpbs.

SANKETM by L1 Bithead
  • 1182 Views
  • 1 replies
  • 0 Likes

USER-ID Rules

Hi Team, We have implemented SAML authentication for GP users. Since then the Source User logs are being seen as email IDs and not with the SAMACCOUNTNAME. So the rules implemented with the LDAP user groups are not working. Is there any way we can get this sorted? Regards, Sanjay S

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks