General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 592 Views
  • 0 replies
  • 0 Likes

Resolved! vsys1 - User-ID Hub

Hello -

Can someone explain the difference between "vsys1 - User-ID Hub" and another of my palo's that just has "vsys1"?

Panorama showing incorrect device IP

Morning all. We are onboarding 90 or so pa410 firewalls and did our initial config and update with ZTP, at which point panorama showed the managed devices as their DHCP address on a /24 I gave them.

 

we are now using the dedicated WAN interface for

...

smartz by L0 Member
  • 2650 Views
  • 2 replies
  • 0 Likes

Quick AP ID related question google-docs

Just looking of for clarification around google-docs app IDs. If I allow the google-docs container ID in a policy\app group...I'm essentially including ALL the child apps contained within.... correct. ???

No need to explicitly specify the child apps

...

Are Virtual Routers required?

I am working with a customer whereby the requirements are to split different traffic by different interfaces. Its an internal firewall and will not route internet traffic
 
1x Interface for East/West/North/South traffic
1x Interface for communication
...

Nhussain by L1 Bithead
  • 2534 Views
  • 3 replies
  • 0 Likes

Firewalls disconnected after upgrade to 10.1.6-h6

CHECK if Palo-HA pair are no longer connected because of an empty “auth-key”?

Panorama → Managed Devices → Summary

<<Check Certification Column (Should have “pre-defined”) >>

 

 

(1) –GENERATE-- OR --COPY-- <panorama-auth-key>

Panorama → Device Regis

...

How Do I Actually Get Support From Palo Alto?

So I purchased premium support for my device but when I go to the website to create a support ticket, I get to a point where the ticket is blocked by a window telling me that I am being redirected to the live community. If I click continue a new tab

...

Radius Accounting

Is there a way to configure the boxes to act as a NAS by sending a Radius Server (like Freeradius) accounting information? I am particularly interested on the session start and session stop attributes. I am about to provide Globalprotect VPN access t

...

Error while disabling tunnel.

Hi All,

We are running PA with firmware 9.0.4

 

Getting errors while "disabling" not required/unsed IPSec tunnel.

 

Error: tunnel interface tunnel.50 encap interface is not set.

Error: parse tunnel member failed.

Error: error parse qos tunnel group

Error: er

...

Jimmy20 by L2 Linker
  • 5481 Views
  • 3 replies
  • 0 Likes

Rules from One Zone to another Zone

Hello All,

 

from the GUI i can get all the security policies from one zone to another, However, from the CLI, is there a way?

 

for example : i need all the policies from Orange_Zone to Free- App_Zone

 

"Orange to DEVDB11-1; index: 1333" {
from Orang

...

User-ID Agent

Hello!

 

I have a Palo Alto with version 9.1.5 installed and I want to install a User-ID Agent, which version can I install?

Rate increase in flow_ipv6_disabled

Hi All,

 

Is there any way to check which source of this flow_ipv6_disabled?

Our monitoring tool keeps on alerting us due to these parse packet drops. 

 

When I run the command below, I don't see any logs on Palo Alto's monitor. 

 

debug dataplane p

...

mudvayne15_0-1661210191059.png

Join Palo Alto Networks at SASE Converge 2022!

 

Is your network ready for a new hybrid work environment? Join Palo Alto Networks leadership and industry experts at SASE Converge 2022 to learn about the latest trends and innovations in SASE!

 

Check out the agenda and register for SASE Converge

...

jforsythe_1-1661266514429.jpeg
jforsythe by Community Team Member
  • 9441 Views
  • 0 replies
  • 0 Likes
  • 24105 Posts
  • 117 Subscriptions
Top Liked Authors
Labels