This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4250 Views
  • 0 replies
  • 0 Likes

Support Portal - Not Able to Select the Asset

Hello, I'm Support Portal Page >Support Cases >Get Help in that can't able select the assets Find Asset Tenant ID/ Serial We can find our device with serial number ; we can't able to select the particular device .Please note you are posting a public message where community members and experts can provide assistance. Sharing private...

GRE tunnel failover issue

Hi Community, I am trying to set a GRE tunnel between Palo Alto PA-850-ZTP and zscaler. Issue: I have tunnel.1 and tunnel.2 created as Primary and Secondary. static routed default towards Internet. GRE tunnel Primary and secondary configured with Public local and peer IPs with tunnel interface .1 and .2 respectively. PBF rule is crea...

GauravSingh_1-1660652111162.png
GauravSingh_2-1660652222304.png
GauravSingh_0-1660652053031.png
GauravSingh_3-1660652596481.png

Day-zero Configuration of Palo-Alto

Hi All, I heard day-zero configurations of the Palo-Alto firewall we can perform via the free service provided by Palo-Alto.Do anybody having the visibility here.

Sujanya by L3 Networker
  • 3856 Views
  • 4 replies
  • 0 Likes

Resolved! PAN firewall HA and addition of same to Panorama

We are having an existing panorama in our network via which multiple production firewalls are managed and in one of the location we are planning to implement two new firewall in HA ( active -passive) set-up.question is : Do we need to add the firewall first and later need to configure HA or add the devices in HA first later we need to add them...

Sujanya by L3 Networker
  • 4246 Views
  • 6 replies
  • 0 Likes

iCloud- Base App ID

Hi Team, We are unable to see iCloud-uploading and iCloud-downloading Apps in our traffic logs, All the traffic identified as iCloud-base. Can someone help me on this ?

ping: sendmsg: Permission denied to connected router - but can reach destinations beyond that router

Any help is appreciated... I have a PA interface connected to a router using a /31. I have static routes with that router as the next hop. From the firewall interface on the /31 interconnect, I can reach all of the destinations I have static routes for. I can't, however reach the router's IP on the directly connected /31. When I try to pin...

Resolved! HA1 link doesn't support /31-bit subnet mask for point-to-point links?

Hi, I'm setting up two PA5250s in HA and are connecting them up directly to each other. Since these are point-to-point links, i tried using a /31-bit subnet mask, as that is our usual norm for point-to-point links as per RFC3201. Does anyone know why you can't use a /31 for this when they're directly connected to each other? Thanks,Eugene

eugenep by L3 Networker
  • 6083 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect for Linux

Is there support for the Global Protect client for Linux? It's not a download option when logging into the portal via https. If not, is there a way to connect using Java? Would NetConnect work?_

Resolved! Master Key issue with Panaroma managed firewall?

Ok so I may have made a mistake but I want to know the steps to recover and gain control back. I changed the mastr key on Panorama and then proceeded to deploy same master key to 2 test firewalls. Both failed, one is a standalone VM, another to be removed disconnected HA pair, one of them in the pair is already turned off. I then reverted conf...

raji_toor by L4 Transporter
  • 3897 Views
  • 2 replies
  • 0 Likes

Mute the Music while on Hold

While waiting on hold for support, is there a way to mute the hold music? The same 35-second loop for 30+ minutes is just too much. Especially when you had a time slot reserved for an engineer.

JMRLT by L0 Member
  • 4763 Views
  • 3 replies
  • 2 Likes

Apt-Get Traffic Allowed but Vendor Receiving Install Error

We are working with a vendor who is attempting to install apt-get files onto our test server 172.23.10.44. Traffic was not allowed yesterday, but now is today after I associated application of "apt-get" to application group. Now traffic is allowed, but the vendor is stating the following error still which they were getting before I made the chan...

Bullix36_0-1660749258389.png
Bullix36_1-1660749377889.png
Bullix36 by L0 Member
  • 3522 Views
  • 2 replies
  • 0 Likes

Authenticated NTP, what do you use?

Hello Community, While I already have googled and found some solutions, I would like to get input from you to see what you have used and works well. In a windows environment, what do you use to point your PAN's NTP configuration to an authenticated server? I know domain controllers use Kerberos with other windows systems, but not 3rd party devi...

Change in NetFlow behavior in PAN-OS 10

Hey guys, Here's another one of the issues I have run into after upgrading to PAN-OS 10. Application usage statistics received by NetFlow are now displayed in Petabps / Pbytes on my NetFlow servers!I have confirmed that my NetFlow server hasn't been touched since updating the firewall to PAN-OS 10.I have also set up a separate NetFlow server and...

warface by L1 Bithead
  • 3186 Views
  • 2 replies
  • 1 Likes

Resolved! GlobalProtect user in RDP login?

Anyone know why, after installing Globalprotect, I see an empty user account with the GlobalProtect icon as an option when trying to RDP to remote desktops? I've noticed it on every machine after installing GP... I'm hoping it is a config option that can be turned off somewhere but I'm not sure what it is for. On my home computers it is actuall...

GP-account.png
jsalmans by L4 Transporter
  • 5611 Views
  • 4 replies
  • 0 Likes
  • 24360 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks