General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

compatibility

Dear Gents.Kindly, i have a Cisco catalyst 9500 switch, my question, what is the last product of Palo alto firewall compatible with my cisco 9500 switch? thanks.

SDWAN - DIA anypath -Scenario?

Im still trying to get a grasp of the concept of SDWAN - DIA anypath. The components and configuration are pretty straight forward but the "why/when" is not making sense. The main scenario that's proposed is "when you want to fail over to using the internet at another site (over the vpn) when local DIA is not available." Again, I must be miss...

smarcyes by L1 Bithead
  • 5536 Views
  • 6 replies
  • 0 Likes

In Progress: Device Updates / Content Publishing

Incident Report for Content Publishing is Failing: Palo Alto Networks Cloud Services — If you are unable to retrieve new updates for devices, please stay up-to-date on the issue and its resolution via the status page.

jforsythe by Community Team Member
  • 2553 Views
  • 1 replies
  • 1 Likes

using Snmp3 to backup PA

Solarwinds Network Config Manager has the ability to use SNMP3 to backup PA config. See below link.https://thwack.solarwinds.com/product-forums/network-configuration-manager-ncm/i/feature-requests/backup-palo-alto-configuration-with-solarwinds-ncm-config-backups But the article doesn't include the SNMP3 string to do the backup. Anybody got a SN...

"end" but no "start" log while session breakdown. logging set to start and end of session

Hello, we have the following issue: Customer complains, that their web services, that are reachable from the internet through a palo alto firewall, show sporadic breakdown of incoming ssl connections for a couple of minutes. After analyzing the logs on the palo alto, I see in the corresponding time frame log entries with type session "end", but ...

Resolved! Dynamic IP and Port - Session Browser s2c

Hi All, Firstly many thanks for checking out my query. I have a virtual router that has an ISP connection. This ISP has assigned us a /30. I have configured an interface on the FW with the designated add from the /30, this address is used to NAT our clients to access the Internet using dynamic ip-and-port (nat overload). The internal client ...

DForde by L1 Bithead
  • 2311 Views
  • 1 replies
  • 0 Likes

MFA no longer active/available at all

Hello,i read the info from april 14th, that mfa is mandatory in the future.Before, i had mfa enabled with the authenticator app, which worked fine.Since the information, no mfa at all is active/available on the account.

Access to PA-200 Web GUI is Denied.

When I open up a https://if_of_pa-200I get access denied message with You dont have authorization to view this page.I have logged into this firewall many times before but have not for several months now.I can use putty to get into the console. I found some online solution that would give this error is I was out of space.My root partition was at...

Omni918 by L1 Bithead
  • 7707 Views
  • 10 replies
  • 0 Likes

Resolved! VPN proxy ID limitation Error

Is this still an issue and or what models pertain to this? I see the Pan os version is old on this article, but does anyone know if the limit here still applies? If it's been increased, what has it been increased to per model? Appears that aritcle/documentation is harder to find. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?i...

Sec101 by L4 Transporter
  • 3469 Views
  • 1 replies
  • 0 Likes

Daul ISP and specific ISP routing

Good Afternoon All I have read the various methods for Dual ISP configuration and they make sense. I could not find one last detail and I was hoping someone here could help. Desired Configuration: ISP 1 = Active for outbound traffic during normal operations.ISP 2 = Inactive1 Client IP on the internet network to have its traffic routed out via IS...

Mort2k by L0 Member
  • 2352 Views
  • 1 replies
  • 0 Likes

Resolved! Passing a Circuit Prefix Through Palo Firewall

I'll do my best to put this question into words.My company owns a /24 Public IP range. I have an engineering department that needs a /29 IP space off of that block for their Lab Environment. I have a Juniper MX104 Router and a Palo 5220 Firewall.I'm not sure what my best steps are to get this circuit passed through the Firewall straight to the L...

Resolved! how to Revert configuration by cli - pa 200 v 9.0.14

Hi Guys, we have a problem on a HA pair, the secondary firewall is no longer accessible via either GUI or CLI.We can only connect via console, to restore one of the saved and working configurations, is it necessary to do only these commands? > configure # load config+ key key> from Filename> last-saved Last saved conf...

MAerre by L2 Linker
  • 7415 Views
  • 2 replies
  • 0 Likes

Resolved! TLS version for WEB UI

Hi All,I am trying to check what all TLS version is allowed for firewall web UI .Is there way we can validate this. ? Thanks .

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels