General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 191 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 873 Views
  • 0 replies
  • 0 Likes

Resolved! Aged Out in allowed traffic logs

Hi All,

 

I have a doubt regarding aged-out feature in palo alto firewall.

We are getting logs with allowed traffic towards different ports like port 23, 1433 etc.

The device action is allow and in reason aged-out.

 

I want to know that whether the traffic

...

ahmdsmr by L1 Bithead
  • 280256 Views
  • 11 replies
  • 0 Likes

SDWAN Zone Mapping

Trying to make sure I understand this correctly.  For each zone to used within the SDWAN they must be mapped to the pre-defined SDWAN zones.  For the following example would this be the correct method of mapping:

 

Pre-SDWAN zones (same zones at all si

...

Resolved! Can there be fallback authentication for GlobalProtect?

I ran into a scenario that rendered me useless remotely, and I'm wondering if I can configure secondary authentication for GlobalProtect...

I used GP to VPN in remotely.  My GP is set up to authenticate through Active Directory, and it works fine.  I

...

uscit by Not applicable
  • 4027 Views
  • 2 replies
  • 0 Likes

GlobalProtect agent download from direct URL

Hi everyone,

 

Do you know if it's possible to block the download of the globalprotect agent via the direct URL ? 

The goal here is to force users to authenticate in the portal web page to be able to download the agent.

 

Ex. for the 64bit agent :

https://

...

FabienJ by L2 Linker
  • 13014 Views
  • 19 replies
  • 0 Likes

Resolved! Aged Out Traffic

Hi All,

Please help me on this.

If I am doing telnet from one server then telnet is working fine but in firewall I can see the traffic is aged out.
I need to know if any traffic is getting aged out, then it should not allow the traffic but how the tra

...

PPradhan by L1 Bithead
  • 3142 Views
  • 1 replies
  • 0 Likes

Problems to upgrade the OS.

Using  the http portal I´m trying to download the OS version.

I have installed the  9.0.5 version and  trying to reach 10.1.10 h1.  the problem is when I press check now to see the OS versions availables, does not appears nothing new, and in don´t  t

...

PA downloads.jpg

questions to advanced url filtering

Hi all,

I renewed licenses and bought the new adv url subscription which is already activated in my customer portal. However, my firewall still has the legacy url license active.

1) Do I need to import the adv url license manually? What happens to th

...

DVB_Bank by L1 Bithead
  • 2654 Views
  • 3 replies
  • 0 Likes

Auto-commit after upgrade to 10.0.0 fails

Hi all,

 

After upgrading a PA-220 from 9.1.13 to 10.0.0 Data plane is not coming up as auto-commit keeps failing. The only info i got so far is as shown:

I have downgraded the PA back to 9.1.13 and the auto commit is successfull after reboot. However w

...

GnContente_0-1646686454846.png

Upgrade 9.1.0 to 10.0.0 PA220

Hello, im experiencing issues with upgradeing my PA220 from 9.1.x to 10.0.0.

The new software installs, but autocommit fails after upgrade.

 

So i figured i had something in my config that is either changed or not supported in 10.0.0, so i wiped my box

...

  • 24007 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels