General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PA-820 Time Reverts to 2000

I have PA 820s deployed at remote sites with IPSec tunnels configured on them. When a power outage happens, either through a requested shutdown or not, the time resets back to Jan 1, 2000 on some of them and the initial commit fails. This causes the

...

Security Policies in Firewall

How to troubleshoot when we get sessions end reasons: 

Tcp-rst-Server

Tcp-rst- client 

Tcp-fin 

n/a

Aged out 

 

I know what all these but I don't know how to troubleshoot the issue and don't know where to start  troubleshoot 

Can someone help on this. 

 

GP Authentication issues with Symantec VIP

Hi,

We are running Palo Alto Global Protect with Symantec VIP MFA. We have run this for quite some time now and it has been stable until recently.

We are seeing random errors appearing on one of the validation servers. It seems Palo is sending the requ

...

Firewall requests.png

Resolved! GlobalProtect Client Startup Windows 10

GlobalProtect Version 4.1.0-98

PAN OS 8.0.10

Login mode: on-demand

 

Hi there, 

we've roll-out the GP-Software on everyone's PCs.

Everytime a Windows (10) Client is rebooting the "GlobalProtect" pop-up Gui is showing up. Is there a way to stop loading the

...

Hodor by L1 Bithead
  • 42411 Views
  • 14 replies
  • 0 Likes

Newbie Question

Guys,

 

I want to apologize in advance.  I just haven't been able to find any information on this topic.  I have our first brand new PAN firewall and I'm configuring it for use in a remote datacenter where we rent space and we will connect via site-to-

...

OSPF route learning with Active/Active HA setup

I have an Palo Alto A/A HA configuration, each member with their own independent virtual router. The HA firewalls build an IPSEC tunnel to a branch Palo Alto firewall and have OSPF configured to advertise the HA firewall routes to the branch firewall

...

TomKisiel_0-1605971273887.png
TomKisiel_1-1605971683294.png

Resolved! Commit Error

While committing the policy we are getting the below error.

Error reading signature DFA data
failed to handle CONFIG_UPDATE_START

SenthilM by L0 Member
  • 3390 Views
  • 4 replies
  • 0 Likes

systemd-resolved support for GlobalProtect Linux

My system is using systemd-resolved to manage name resolution.

my /etc/resolv.conf is a symlink to /run/systemd/resolve/stub-resolv.conf

 

When I connect to GP, my systemd is not aware that new DNS server and search domains are available.

 

Is there a way

...

mickael by L0 Member
  • 6178 Views
  • 2 replies
  • 1 Likes

certification

Hello Community

my name is Abdullah and i belong a poor family can palo alto team provide a free certification.

 

ABSTYLE by L0 Member
  • 1107 Views
  • 1 replies
  • 0 Likes