General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

Barracuda to Palo Conversion

I've tried searching but have not been able to find much information. Does anyone have experience converting a Barracuda ng800 to Palo Alto? I'm working with someone that just received a pair of PA-5200 series firewalls and want to move their Barracu

...

Community Expert Verified
Community Expert Verified

Resolved! GlobalProtect Certificate to Encrypt and Decrypt Cookies

Hi All,

I'd like to find out what type of certificate you need if you are configuring Authentication Override for GlobalProtect Portal and Gateway. That is, for the option to specify a certificate to Encrypt/Decrypt Cookie (screenshot below), does thi

...

override.PNG
Bocsa by L3 Networker
  • 17107 Views
  • 5 replies
  • 1 Likes

GlobalProtect multiple gateways

Hi All,

 

Similar to a Cisco ASA tunnel-group configuration where we can have different VPN configurations using the same public IP, I wonder if similar configuration can be achived on Palo Alto. My objective would be to configure different gateways us

...

Palo Alto Networks Approved
Palo Alto Networks Approved

ipsec question

Hello,

Do I need a tunnel interface for site to site vpn ? 

If yes How can I do that and what is the benefit 

Thanks 

 

 

 

tifotano by L0 Member
  • 1583 Views
  • 1 replies
  • 0 Likes

destination port in PBF

Is there an option to define destination port in PBF. Now if a service is selected, PA applies PBF if source or destination has that port.

I am looking for a PBF which should match only if destination port is 80.

ceapen01 by L2 Linker
  • 2125 Views
  • 3 replies
  • 0 Likes

Resolved! Always on Global Protect

Hello All,

Looking to get advice on this topic. The idea is to have the users connect via a VPN tunnel regardless of their location, internal LAN or working from home, etc. I need to make it easy on the users so its to a burden, e.g. having to authen

...

exclude a network from static route

Is it possible to exclude a network from static route.

 

For eg  I have static route 10.20.0.0/16 to the core-switch.

unfortunately my management network (including PA) is 10.20.200.0/24

I dont want traffic to 10.20.200.0/24 going to core switch.

 

just ex

...

ceapen01 by L2 Linker
  • 3348 Views
  • 3 replies
  • 0 Likes

LDAP-S Authentification failed (LDAP-S with TLS1 ?)

Hi,

 

while using LDAP-S (port 636) on a PAN Firewall for a connection to an active directory on a Windows Server 2019 I have the problem that the Firewall just can't connect.

 

If I try the "test" command for testing the authentication profile I get thi

...

maximum length of TACACS User ID

We use TACACS+ server for admin authentication.

 

Is there a limit on the length of an ID?  I have one that is 40 characters (we use email IDs).

 

Getting an auth-success log message for this user, but then a Critical "create-admin-acct-error" message:

 

F

...

cdwing by L1 Bithead
  • 2616 Views
  • 2 replies
  • 0 Likes
  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels