This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! noreply mail not arriving

Hi all,I have a collaborator that is trying to change his password, but when he clicks on "forgot password" link, the portal says the mail is delivered, but he doesn't receive any mail from the "noreply@paloaltonetworks.com".When i do a message trace in 365 Exchange, there's no mail from Palo Alto to the mail desired.I'm sure the mail address is...

Guide for troubleshooting Nats security policies

Looking to see if there is a troubleshooting guide for NATS and for Security Policy rules. Searching has turned up various hits here and there, but not something comprehensive as what cisco has on their site for their docs. Am I just looking in the wrong place? Any other PA sites that have good info besides these boards?

Support portal login error

When I tried to log in to the support portal, getting the below error, earlier I used to login into the portal.UnAuthorized AccessYour membership has expired or has not been approved, please contact Palo Alto Networks Support. my name : Arumugasamyemail : swami@gbmme.comBahrain00973 39063271

Change HA pair from Active/passive to Active Active

Hi All, I will be changing one pair of our firewalls from an active/passive pair to an active/active pair. Whilst confident of what is needed and the process I need to take, has anyone ever gone through this process? Was it problematic, time consuming, any gotchas I should know about? Regards Adrian

a.jones by L3 Networker
  • 9422 Views
  • 3 replies
  • 0 Likes

PBF Issue

Hello, i have palo alto with 2 ISP(A and B) and 1 internal connectioni enabled the ECMP + simetric return and ecmp setting IP Modulo.my goal is, force 1 IP segment to ISP B to go to the internet i already setting in PBF, using enforce return simetric but in the the traffic monitor, the user show incomplete application. i assume that it go into I...

Vpnc client region null

Hi all,I'm trying to connect to vpn using vpnc.Everything works fine, but if I restrict the region in the gateway, vpnc does not connect because it is shown as "Client region: (null)"Any experience on this?Thanks

N2Z2 by L2 Linker
  • 2242 Views
  • 2 replies
  • 0 Likes

User-ID with 802.1x problems wired and wireless

Hi all. We have PA-820 with 10.1.2 with User-ID Agent on Windows AD runing version 10.0.4-r23 and we are using Cisco switches for users. We have 802.1x enabled on ports for users. The problem we have is, that PA doesn't recognise users from 802.1x, instead sometimes they are recognised as machines (under Monitor->User-ID), and then it won't a...

Resolved! Windows Update Traffic (ms-update) being recognized as web-browsing

Hi Everyone, I have an issue that I haven't been able to resolve. I have a small domain setup with a Windows Server Update Service that is located in a DMZ. The machinges that are in the inside network (trusted), are setup to pull their Windows updates from the server in the DMZ. I have setup Group Policy to make this happend, and it works fi...

Interfaces in power-down state

Hi all...I have a Palo Alto Active/Active pair and the HA3 link between them is down. Will PANOS then power-down all other physical interfaces when the HA3 link is down. Just looking for confirmation that this is expected behaviour or whether I have something more serious happening to this 3260. Any advise would be greatly appreciated name id sp...

Decryption or blocking NordVPN

Is it possible for Palo Alto Firewall to decrypt third party VPN agent traffic such as NordVPN, NordLynx like decrypt HTTPS web-browsing traffic? If it cannot decrypt these traffic, anyone know the App-ID for NordVPN, NordLynx?I found some VPN app-ID like ciscovpn, open-vpn but no Nord related. What App-ID should I use to block NordVPN, NordLynx?

JoeKwok by L2 Linker
  • 7497 Views
  • 3 replies
  • 0 Likes

Resolved! To use Custom URL categories require a URL filtering license?

We are trying to use DNS wildcards and Custom URL categories to restrict access to certain machines in a security policy. We cannot get it to work and I cannot find any docs that a URL filtering license is required to use Custom URL categories. I have opened a ticket and have to been working with level 1 they haven't provided docs to support my ...

Resolved! cortex xdr agent connection problem

hi everybody, we've installed cortex xdr agent on a terminal-master server which gets cloned for distribution xdr-agent on master has active connection to cortex-cloud but cloned servers can't connect... xdr-log: 2022/05/18T14:32:44.590+02:00 <Info> LVTS41 [3608:5152 ] {trapsd:VerdictService:WfDeferredRequestsTimer:} Calling cloud for 3 W...

Url problem

Hello everybody. I allow a url. I also allowed categories for that url, but the site still doesn't work properly. There is a problem connecting to a server on that site and it is deny Thanks in advance

Fagani by L2 Linker
  • 5065 Views
  • 7 replies
  • 0 Likes

Resolved! Panorama 10.0.5 - Scheduled Config Export - ssh custom port

Hi,we try the export of the config of Panorama and our bothe Firewalls 3260 thru the "Scheduled Config Export".It runs well with FTP and SCP port 22. With a custom port ssh, the "Test SCP server connection" failed. I found no future infos on https://panorama01.cid.dom/PAN_help/en/wwhelp/wwhimpl/js/html/wwhelp.htm#href=panorama-scheduled-config-e...

bovay by L1 Bithead
  • 4370 Views
  • 4 replies
  • 0 Likes

Resolved! Palo Alto PA-3220 replace Bluecoat Proxy

Hi Guys, Does anyone tried to use PA-3220 model as proxy server? Currently the internet traffic of my company is using bluecoat proxy with pac file (config in windows proxy setting), and the proxy also inline with sourcefire for doing SSL interception, IPS/IDS. I'm investigating can this model replace the bluecoat proxy. Can I define the PAC to ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks