This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4220 Views
  • 0 replies
  • 0 Likes

Can Policy-based forwarding be used for routing the firewall connection for updates?

We've got a firewall that doesn't have a management interface connection. The default route for the firewall is configured across a tunnel interface. The service route has been been configured to use the outside interface- there's no option to use the tunnel interface.I'm trying to get Policy-based forwarding working so traffic sourced from the...

Problem with the access to the VPN Globalprotect on Android phone

Hello, I've been facing problems accessing the VPN since Wednesday afternoon from the application on my Android phone. I can't connect to the VPN network. would it be possible to tell me what's going on? I get an error message when I try to connect : GlobalProtect: Connection Failed. The network is unreachable or the portal is unresponsive. Chec...

Firewall rules for IPv6 targets

We are trying to implement IPv6 in our network, and as part of this deployment all our network resources should run on dual-stack (IPv4 & IPv6). Address objects Types in our firewall policy rules have been written based on IP (IP Netmask and IP Range), not with FQDN. (Option 1) To make the same firewall policy rule be used (for Ipv4 and IPv6...

Dereje by L1 Bithead
  • 4925 Views
  • 4 replies
  • 0 Likes

Radius authentication not working

We have configured Radius on our VM Palo but its not working. Provided screenshots of configuration we have on the FW and output of test command. Routing is defiantly in place as we can ping Radius server, however no traffic on 1812 reaching PacketFence Radius server. When done tcp dump - I can clearly see it's capturing pings but nothing for po...

URL Filtering log with action allow

Hi Folks, It seems my whole life is a lie... Apparently PAN FW will generate URL log for category with action set to allow. Yep, and the funnier thing is that you don't even need URL filtering profile applied on the rule. Someone may say I am crazy or I don't understand how PAN FWs work, probably both is true...But how would you explain the fo...

Astardzhiev_0-1674467140717.png
Astardzhiev_1-1674467723328.png
Astardzhiev_2-1674468007848.png

How to reset Support portal passwords for other account members?

Is there a way to send a password reset link for other members in a support portal account? I have a Domain Admin/Super User account that has not logged in for a long time. When the user attempts to request a password reset themselves they get a "Password reset is not allowed in the user's current status". I can't seem to find any documentatio...

Resolved! PAN 3220 setup query

Hello community, first time poster here but I am reasonably new to the palo alto world! I could use some assistance. We have 2 new PAN 3220 firewalls and I have one that is already configured and is connected to our ISP and I would like to connect the second firewall to the same ISP. We have two ports on our ISP router and was wondering if it ...

Linux NIS User-id Integration

Hi everyone, Is it possible at all to integrate a Linux NIS server to be used by User-Id? From what I understand the NIS does not even log logon logoff events. I have a feeling that I am answering my own question. Also is it possible to use Syslog to look through LTSP for events as well? We do have an openLDAP server but each linux client go...

Resolved! PA failover

Hi, We have a cluster PA having problems, we give supports to several clients and some of them are having weird problems since 2 days ago. Strange PA behavior, HA failover and file create in "show system files". These are the logs. why is it happening? moreTime Severity Subtype Object EventID ID Description=======================================...

Serial port on 4050 not showing output

I picked up a used 4050 on ebay. It booted when I got it and I missed the prompt window to type "maint" so I could wipe it. Now I get no display. I am getting pretty frustrated with this unit. Does this console access acct weird by design? Why did it work at first? Can I pop the lid and go mount the drive in a PC and delete the /ect/config direc...

Migrating PA5020 to PA5220

Hello, I am in the process of migrating an HA pair PA-5020 on version 8.1.22 to PA-5220 that shipped with version 10.1.3. From what I researched the 5020 is end of life and can only go up to OS ver to 8.1.*. My thought was to downgrade the new PA-5220 from 10.1.3 to 8.1.22 and restore the configuration. In the process of downgrading the ...

Migration from PA 220 to PA 440

I am in the process of migrating from a pa220 os 10.1 to a pa440 os 10.1.3. I imported the configuration from the pa 220 to the pa440 I ran into three issues: 1.we are getting 1gig from the ISP and even with Qos disabled we are only getting 150mbps 2. We have a toshiba phone system not IP every thing works except when calling location B across t...

Schedule Export of Configuration Files to Panorama Questions.

Hello. schedule Export of Configuration Files Is it right to extract firewall configuration that functions are linked to panorama? https://docs.paloaltonetworks.com/panorama/11-0/panorama-admin/administer-panorama/manage-panorama-and-firewall-configuration-backups/schedule-export-of-configuration-files I set it up by referring to th...

캡처.PNG
캡처.PNG
qmso475 by L3 Networker
  • 2144 Views
  • 2 replies
  • 1 Likes

Resolved! Found Skillets with errors! Please open an issue on this repository to help resolve this issue // odd output

I tested two newly created implementations of Linux, Docker and Panhandler using the Iron-Skillet day one configuration for a firewall (i.e., full XML configuration for NGFW). Is the odd output I received due to the Skillet error messages (Could not find included Skillet with name...)? If so, how can I resolve this issue?

Skillet full panos v10.1.png
Checked out new branch.png
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks