This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1950 Views
  • 0 replies
  • 0 Likes

OSPF with Active/Passive HA

Hi,

 

I came across this design guide and looking at labbing this up for testing, as the design could be a good fit for our production environment, with a few tweaks. In my case, I'll be using OSPF between the firewalls and internal routers A and B. Th

...

OSPF HA.PNG
rchung54 by L2 Linker
  • 10670 Views
  • 8 replies
  • 0 Likes

Clear DF bit for VPN

We have recently migrated our site-to-site VPN so it is now running between a PA-3020 > Cisco ASA 5510.  After the migration we discovered that one of our cross-site applications broke and the vendor determined it was because their application commun

...

Service Accounts and GP

Situation is this, a normal user logs into a PC and GP auto connects.  User logs out and back in as a service account and GP does not auto login.  Any ideas?

Resolved! SAML login remove lock (superuser?)

When I am logged in via SAML, I noticed that I was not able to remove other users' locks.  Seems like this may be because I am not a superuser?  Is there any way to make a SAML-authed user be a superuser?

Resolved! Zone Capacities per PA model

Looking to understand the maximum number of zones which can be used in a given firewall based on model.

 

Is there a document out there which shows the maximum number of zones?

 

Specifically these models:PA-445, PA460, PA1410, PA3420

 

If based on O

...

clewis1 by L3 Networker
  • 1113 Views
  • 2 replies
  • 0 Likes

VOICE Issues

I got a PA-1410 ,it has IP telephony, and their server is in the cloud. The phones have an address 10.200.x.x/24 and make the registration request through ports 5060 or 5075 to a server in the cloud with IP 148.235.12x.x through the SIP application.T

...

F.Pinar by L3 Networker
  • 588 Views
  • 2 replies
  • 0 Likes

Resolved! Tufin

Does anyone have experience using this in a larger environment?  Multi vsys?  Panorama? HA Clusters and so on.  Are there better options available?

 

Thanks in advance for your time.

Resolved! TCP MSS Physical interface settings understanding?

Hi, 

 

Can someone confirm if my Understanding for PA "Adjust the TCP MSS" is correct? 


Reference to this link this is how PA Firewall "Adjust the TCP MSS" value in the physical interface.

 

In other Vendor when we configured the TCP-MSS value we usu

...

Silvs13_0-1743481280686.png
Silvs13 by L0 Member
  • 1305 Views
  • 1 replies
  • 0 Likes

Failed to validate client certificate, thread : 0, 1-0!

Hi team

 

Version PA 11.1.6-h3

Model 1420

Version USER_ID 11.0.1

Windows 2019

We have had an incident with the User ID agents, which have been disconnected from the firewall.
In the logs of the firewall itself the error message was: “Redistribution A

...

Alpalo by L4 Transporter
  • 729 Views
  • 1 replies
  • 0 Likes

PA460 issues

Hi,

 

We have two FW PA460 in HA, one active and another one passive. We have several issues related to configuration synchronization and HA:

1- Synchronization before a commit can take us up to 8 minutes. With the old FW the commit was in less than

...

BigPalo by L4 Transporter
  • 2848 Views
  • 7 replies
  • 0 Likes

Resolved! IP Sec VPN Paloalto - Starlink

I'm testing Starlink business and having issues passing traffic over my tunnel. This remote site connects to our data center via an IPsec tunnel. I can get the tunnel up and traceroute to the remote side of the tunnel, but I'm unable to pass traffic.

...

  • 24199 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks