This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Resolved! Active-Active" mode HA setup across different locations.

Hi Team, Greetings, We have a requirement like client want to know about the FW HA across different location in "Active-Active" mode. For example, PA Model: PA-3430 What are requirements for having fw cluster spread across different GEO locations (latency, delay, etc)? Distance between two locations is 5-10 KM. Is this recommended at all by P...

conversion to advanced routing engine failed

Hi I tried to convert to a advanced routing engine using built in script in version 10.2.4 (pa 440) it converted with the yellow status after reboot I noticed that non of my static routes work and each static route now has an additional entry for vrf that is not listed in the guide below, put 1 there - it did not make any difference htt...

nevolex by L3 Networker
  • 4098 Views
  • 2 replies
  • 0 Likes

Resolved! No Free SWAP Memory PA-450

Hi guys,We have a firewall that shows the free SWAP memory 0. Is this normal? It is a new installation and Genindex process seems to be normal. Here is the output of "show system resources":admin@PA-450> show system resources top - 09:49:41 up 21 days, 20:55, 1 user, load average: 1.96, 2.03, 2.07 Tasks: 238 total, 1 running, 165 sleepi...

GlobalProtect Client Auto Login Woes

Hello,We are testing the GlobalProtect Client (version 1.2.2-14) and are experiencing an issue. We use Windows automatic login for some custom deployment tasks, but are experiencing odd behavior and possible bug.With the AutoAdminLogon, DefaultUsername, and DefaultPassword registry keys set, Windows will automatically log into the specified loca...

ToddJames by Not applicable
  • 8986 Views
  • 6 replies
  • 0 Likes

PA-220 Slow Response time connecting over ipsec tunnel to AWS.

I've read on here multiple posts, older and newer but I think part of my issue is that I'm new to this environment and I'm hoping for a bit of guidance. I took over 4 sites with PA-220 firewalls which were way out of date, I've just got them to 10.0.11 and yes I know I still have a few more to go. All 4 sites have a ipsec tunnel to AWS, one of...

InterfaceMTU.png
InterfaceMTUSetting.png

Global Protect PanGPS Service is Missing

Global Protect VPN is no connecting to the server and the PanGPS services is missing, I did the following procedure https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5eCAC&lang=en_US but it didn´t work, the Global Protect Client version is 6.1.1 and the client Windows Versión is Windows 10 22H2.

Action and Session End Reason conflict when SSL decryption enabled

Hi, SSL decryption was turned on for one of the inside servers. Although it looks good, but some of the logs are rather strange.There are sessions like these:Basically Action - Allow, Rule is hitting correct one (the one permitting the traffic), but Type is Deny and Session End Reason is policy-deny. That looks false to me and it seems that tra...

session1.png
nikoo by L3 Networker
  • 31292 Views
  • 16 replies
  • 0 Likes

PA-440 Cannot load licenses/auth codes/key into device

My PA-440 will not Retrieve license keys from license server. I made sure the server addy and DNS was set correctly. I am not using the ZTP WAN port currently, while I have it in our lab. I have 1/3 setup as outside facing to ISP and 1/4 setup as local LAN that I can access the internet, successfully on. I have tried under License Management...

Resolved! Palo Alto CSP Down

I go to support.paloaltonetworks.com I can access to the case I open but I cannot access to the case or open new case. It stuck in loading . I tried with multiples browser and internet line also same issue. My colleagues have the same issue also

JiaXiang_0-1680666200580.png
JiaXiang by L4 Transporter
  • 2628 Views
  • 3 replies
  • 0 Likes

Resolved! Site to Site VPN 1 GW multiple peers Same VPN network

Hi, Looking for your advise and best practise for setting up a site to site vpn with one GW and multiple peers. VPN IP addresses are from the same subnet. Services behind the GW1 should be accessible be each pee and vice versa. However, each peer should not be communicating to each other. Is this possible? if yes, is there a guidelines on ho...

NSJH by L0 Member
  • 3879 Views
  • 2 replies
  • 0 Likes

Resolved! DHCP configuration

Hello all, Our branch office is using PA820 as a DHCP server with all of our devices into a single vlan. We would like to keep the devices into different vlans with different subnets. My question is how to configure the DHCP to assign a specific subnet to a specific vlan (switch)? Please help!! I am new to this product. Thanks

A log of the export logs

For some reason the exporting of the logs to an FTP server is failing. Are there any log files anywhere that would give me any info? Thanks

s0lselcia by L4 Transporter
  • 1994 Views
  • 2 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks