General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Looking for some advice on Licenses

Hello All,

this is just a question to see the best approach, bear in mind this is not a tech question. OK in advance apologies for the next line.

Our company is a gold partner for Cisco. However, we also support Palo Alto. I am a consultant for PA an

...

Resolved! Dataplane issue

Hello

i have 2 Palo Alto in HA Mode Active/Passive and yesterday the Active when down and i lost all the LACPs ,then i start to troubleshooting to see the cause and i found this

could you tell me if is this bug issue or interface issue please ?

18/11/

...

Resolved! Combined source & destination NAT in one rule

Can you perform source AND destination address translation on a single packet? I know NAT rule processing is first rule match so more specifically, can I have a single NAT rule that defines a source and destination translation?

Resolved! Not recognizing standard ports like smtp. Instead showing as Not-Applicable and blocking

Having an issue with a PA-820 that isn't recognizing standard ports and instead flagging them as unknown and blocking them as Not-Applicable even though there is a policy with service ports specified allowing them through i.e. on-prem Exchange Serv

...

Can Policy-based forwarding be used for routing the firewall connection for updates?

We've got a firewall that doesn't have a management interface connection. The default route for the firewall is configured across a tunnel interface. The service route has been been configured to use the outside interface- there's no option to use t

...

Problem with the access to the VPN Globalprotect on Android phone

Hello, I've been facing problems accessing the VPN since Wednesday afternoon from the application on my Android phone. I can't connect to the VPN network. would it be possible to tell me what's going on?

I get an error message when I try to connect :

...

Resolved! Can the configuration be transferred between different PANOS via Expedition?

Dear All

Is the configuration migration from Panos 9.x running on PA to another PA running 10.2.X doable for Expedition? or each of them must have the same version in order to migrate the Configuration using Expedition?

Best regards

Firewall rules for IPv6 targets

We are trying to implement IPv6 in our network, and as part of this deployment all our network resources should run on dual-stack (IPv4 & IPv6). Address objects Types in our firewall policy rules have been written based on IP (IP Netmask and IP Range

...

Radius authentication not working

We have configured Radius on our VM Palo but its not working. Provided screenshots of configuration we have on the FW and output of test command. Routing is defiantly in place as we can ping Radius server, however no traffic on 1812 reaching PacketFe

...

URL Filtering log with action allow

Hi Folks,

It seems my whole life is a lie... Apparently PAN FW will generate URL log for category with action set to allow.

Yep, and the funnier thing is that you don't even need URL filtering profile applied on the rule. Someone may say I am crazy

...

DHCP Relay: multi-hop, session management and IoT Security

I have a couple of questions about DHCP Relay, multi-hop, sessions and IoT Security.

This is the situation I am dealing with:

Clients are configured for DHCP. Their gateway is a Cisco L3 Switch acting as a DHCP relay.

Red situation: the L3 switch point

...

How to reset Support portal passwords for other account members?

Is there a way to send a password reset link for other members in a support portal account? I have a Domain Admin/Super User account that has not logged in for a long time. When the user attempts to request a password reset themselves they get a "Pas

...

Resolved! PAN 3220 setup query

Hello community, first time poster here but I am reasonably new to the palo alto world! I could use some assistance.

We have 2 new PAN 3220 firewalls and I have one that is already configured and is connected to our ISP and I would like to connect

...

Linux NIS User-id Integration

Hi everyone,

Is it possible at all to integrate a Linux NIS server to be used by User-Id? From what I understand the NIS does not even log logon logoff events. I have a feeling that I am answering my own question. Also is it possible to use Syslo

...

Resolved! PA failover

Hi,

We have a cluster PA having problems, we give supports to several clients and some of them are having weird problems since 2 days ago. Strange PA behavior, HA failover and file create in "show system files".

These are the logs. why is it happenin

...

User

Count

Subject

Likes

Likes Count

7 Likes

6 Likes

5 Likes

3 Likes

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free