General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1665 Views
  • 0 replies
  • 0 Likes

Resolved! Active-Passive HA failover and Preempt disabled

I have an active passive pair:

 

PAN01- Passive , device priority 50, Preempt- disabled

PAN02- Active, device priority 40, Preempt- disabled

 

Now I wanted to switch the priority i.e. to make PAN01 active and PAN02 passive.

 

I changed the priority on PAN02

...

Resolved! Dual ISP - Will not activate dual default gateway routes

I just installed a firewall for a customer last night and it absolutely refuses to activate the default route for both ISPs in the virtual router.  Only 1 will go active at a time.  The intent is to just use route monitoring and use the primary ISP u

...

traylorm by L1 Bithead
  • 3207 Views
  • 1 replies
  • 0 Likes

Identify the user account while using RDP on desktop

Hi,

This is just an query, so that I can understand this topic better. Bear with me, since I am not a network specialist.

Environment

  • User works remotely on a laptop and uses GlobalProtect VPN client to remote in on a desktop
  • The desktop is located in th
...

Can CFF format remove the double-quote

HI,

 

As PA document, https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-descriptions/escape-sequences.html,

To maintain backward compatibility, the Misc field in threat log is always enclosed in

...

Sam_Pang by L0 Member
  • 1745 Views
  • 0 replies
  • 0 Likes

Resolved! software update for PA-820 without support contract

hello all,

my organization has a PA-820 at a branch location that's been a little neglected. it doesn't have a support contract and it's currently running panos 9.0. I would like to upgrade this at the very least to 9.1, but I'm having difficulty loca

...

Resolved! MFG part numbers confusion

 

Hello all,

Is there an official document from Palo Alto that lists their MFG part #'s?

For example if I'm looking to purchase a 1 year subscription for my 3220 stand alone firewall I need to know the license part # to purchase. The frustrating part is

...

roma by L2 Linker
  • 2151 Views
  • 1 replies
  • 0 Likes

Multiple IPSec tunnels, single external IP

Looking to set up a POC with a PA-820 that has the following

  • IPSec VPN site-to-site between our local facility and 3 partner networks
  • Single external IP, 3 tunnels (IKE P2)
  • NAT to a single host on our local private network

Is this reasonable/possible?

digdoug by L0 Member
  • 3833 Views
  • 1 replies
  • 0 Likes

Resolved! Default PANOS for PA series

Hello, 

Anyone have the ideas how to check online what is the default PANOS which ship with PA series FW?

I have PA-3220 ordered last Nov and it will arrive soon.

Many thanks,

Failed exporting config bundle via ssh

Failed exporting config bundle via ssh to servername.com /tmp/pan/pano_name_20220106.tgz: No such file or directory..Killed by signal 1..'

 

It was working, but suddenly has stopped.  "Test SCP server connection" works and drops the test file in the co

...

Resolved! Installing a new cert

For Global Protect I currently have a server cert on my PAN 3220. When i imported it it had the entire chain - root, intermediate and the server cert. That server cert is now nearing expiration. I gave our cert manager a CSR from the PAN and I now ha

...

palomed by L3 Networker
  • 2135 Views
  • 1 replies
  • 0 Likes
  • 24215 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels