This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4107 Views
  • 0 replies
  • 0 Likes

Problem with LDAP group usage in Authentication Profile

Hi.I have a strange issue with LDAP groups in our PA-5220 setup.Our setup is two HS-clusters with each containing two PA-5220. All of the devices are fully managed using Panorama. All of the firewalls are running 9.0.5 and Panorama is also of version 9.0.5. The configuration looks like this, I have configured a LDAP server object with all of our...

TCP 179 BGP port exposed to non direct neighbour or multi-hop neighbor, no rules in place allowing such traffic - still reachable

Hi,We just got pinged by security that our Palo's are exposing their TCP 179 to the internet while we utilize BGP as routing protocol to our next hops.Now we haven't got any explicit rule which should allow TCP 179 on the public side, and yet a non BGP next hop device can reach 179, while we do not have an explicit rule about the routing protoco...

URL not accessible in Chrome and same working in Firefox

User trying to access external site, That particular website is not accessible getting "This site can’t be reached".The same URL is working on Firefox. Request traffic from chrome not reaching paloalto, the same from Firefox I can see the traffic logs.Other websites working in chrome browser through paloalto. The reported site is accessible in s...

#PA-820 Not routing to Internet

I have an issue with a PA-820 that has me scratching my head. I'll try to keep the description short, but this one takes some background. The History:I had two physical sites in different parts of the country, one with a PA-820 the other with a pair of PA-3020s. I had to move the PA-820 and all of the infrastructure behind it into the same phys...

Palo Alto Temperature Readings

There are three temperature readings for Palo Alto PA-220 when I pull them using SNMP to our Cacti server -----Thermal----S1 Temperature @ U48 False S1 Temperature @ U49 False S1 Temperature @ Cavium Core I researched that Cavium Core is the main processor for the CPU of data management plane, but what is U48 and U49?Should I worry about those?

Resolved! Revert configuration through CLI

Hi Team!.I have been testing in a PA. But I can not go through webgui, it gives me certificate error.How could I revert the configuration through CLI ?. I have saved a snapshot, but how could I load it through CLI? regards

Join Us for a Tech Deep Dive Miniseries!

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2. Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos andmore to protect your business and defend against threats in real-time! Register Now: Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 3474 Views
  • 3 replies
  • 1 Likes

SMB/MTU Issues

We are having issues with slowness when moving files in general. Whether they are through the SMB connection or just over the network. We have found the following, but want to get people feedback on what might have worked for you. PAN - 157715 - Fixed an intermittent issue where SMB file transfer operations failed due to packet drops that w...

nstultz by L0 Member
  • 3814 Views
  • 1 replies
  • 0 Likes

High Availability - Passive Link State

Hi Team,Trust all is well. IN the documents it is only mentioned that the "Auto" link-state makes the convergence faster but it is not mentioned how much faster, for example in the number of seconds. From the guide:Set the Passive link state to "Auto". Auto setting will bring the interfaces on the passive firewall to UP physical state, the inter...

Aggregation interface on virtual wire

Hello All,Is there supported to create virtual wire aggregate group ae1 with 3 physical interfaces and another ae2 with another 3 physical interfaces, then form virtual wire with ae1 and ae2. Point of this setup is to put PA between two switches with port channel group formed with 3 physical interfaces.Regards,Predrag

Tician by L3 Networker
  • 9104 Views
  • 6 replies
  • 0 Likes

Resolved! jpeg file blocking download error

Dear Team, I am doing a file blocking test for the jpeg file format.When uploading a jpeg, it is recognized as a unique threat id below, and I can control it as I want. Name: JPEG File Upload> Unique Threat ID: 52097URL : https://threatvault.paloaltonetworks.com/?query=52097logBut I want to control jpeg download. For testing, I set it to 'all...

policy.jpg
profile2.jpg

Resolved! Allow only certain users through VPN Security Policy

Hi All,How can I allow only certain users to use this policy from below? I am not able to do so at the moment using a local database (is it not achievable with a local database?). Currently, only when choosing 'any' will allow traffic through.@BPry

paragkarki143_0-1652249613154.png
Pras by L4 Transporter
  • 3432 Views
  • 2 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks