This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4133 Views
  • 0 replies
  • 0 Likes

Resolved! Can I set NAC with Mac address or device information in Pan-OS?

I would like to set up NAC for people who bring personal laptops into the company.Is it possible to control by linking Mac address and IP, or to assign IP only to authorized devices, or to enable network use? Or, can you tell me how to use certificates to prevent network access from devices without root certificates?

loopback standing in for end device

hi, my company has an extra pair of 820 firewalls. for practice i was thinking of setting up active-standby ha on them in lab environment. even though its a lab, my company doesnt have too many extra workstations or laptops lying around. so would a loopback interface in panos 10.x be a sufficient stand to act as a end device?

kcheng by L0 Member
  • 1650 Views
  • 1 replies
  • 0 Likes

Resolved! no disconnect button global protect

I have globalprotect version 4 and I have a connect button but no disconnect button. When its connected I just hit connect again to disconnect, is there a way to change this"

jdprovine by L4 Transporter
  • 20274 Views
  • 9 replies
  • 0 Likes

Resolved! Active-Active" mode HA setup across different locations.

Hi Team, Greetings, We have a requirement like client want to know about the FW HA across different location in "Active-Active" mode. For example, PA Model: PA-3430 What are requirements for having fw cluster spread across different GEO locations (latency, delay, etc)? Distance between two locations is 5-10 KM. Is this recommended at all by P...

conversion to advanced routing engine failed

Hi I tried to convert to a advanced routing engine using built in script in version 10.2.4 (pa 440) it converted with the yellow status after reboot I noticed that non of my static routes work and each static route now has an additional entry for vrf that is not listed in the guide below, put 1 there - it did not make any difference htt...

nevolex by L3 Networker
  • 4016 Views
  • 2 replies
  • 0 Likes

Resolved! No Free SWAP Memory PA-450

Hi guys,We have a firewall that shows the free SWAP memory 0. Is this normal? It is a new installation and Genindex process seems to be normal. Here is the output of "show system resources":admin@PA-450> show system resources top - 09:49:41 up 21 days, 20:55, 1 user, load average: 1.96, 2.03, 2.07 Tasks: 238 total, 1 running, 165 sleepi...

GlobalProtect Client Auto Login Woes

Hello,We are testing the GlobalProtect Client (version 1.2.2-14) and are experiencing an issue. We use Windows automatic login for some custom deployment tasks, but are experiencing odd behavior and possible bug.With the AutoAdminLogon, DefaultUsername, and DefaultPassword registry keys set, Windows will automatically log into the specified loca...

ToddJames by Not applicable
  • 8904 Views
  • 6 replies
  • 0 Likes

PA-220 Slow Response time connecting over ipsec tunnel to AWS.

I've read on here multiple posts, older and newer but I think part of my issue is that I'm new to this environment and I'm hoping for a bit of guidance. I took over 4 sites with PA-220 firewalls which were way out of date, I've just got them to 10.0.11 and yes I know I still have a few more to go. All 4 sites have a ipsec tunnel to AWS, one of...

InterfaceMTU.png
InterfaceMTUSetting.png

Global Protect PanGPS Service is Missing

Global Protect VPN is no connecting to the server and the PanGPS services is missing, I did the following procedure https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5eCAC&lang=en_US but it didn´t work, the Global Protect Client version is 6.1.1 and the client Windows Versión is Windows 10 22H2.

Action and Session End Reason conflict when SSL decryption enabled

Hi, SSL decryption was turned on for one of the inside servers. Although it looks good, but some of the logs are rather strange.There are sessions like these:Basically Action - Allow, Rule is hitting correct one (the one permitting the traffic), but Type is Deny and Session End Reason is policy-deny. That looks false to me and it seems that tra...

session1.png
nikoo by L3 Networker
  • 30996 Views
  • 16 replies
  • 0 Likes

PA-440 Cannot load licenses/auth codes/key into device

My PA-440 will not Retrieve license keys from license server. I made sure the server addy and DNS was set correctly. I am not using the ZTP WAN port currently, while I have it in our lab. I have 1/3 setup as outside facing to ISP and 1/4 setup as local LAN that I can access the internet, successfully on. I have tried under License Management...

Resolved! Palo Alto CSP Down

I go to support.paloaltonetworks.com I can access to the case I open but I cannot access to the case or open new case. It stuck in loading . I tried with multiples browser and internet line also same issue. My colleagues have the same issue also

JiaXiang_0-1680666200580.png
JiaXiang by L4 Transporter
  • 2575 Views
  • 3 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks