This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

PA Firewall Performance Chart

Spoiler (Highlight to read)Looking at the comparison chart, if I was interested in the 3430 and I use SSL decryption, threat prevention\wildfire\URL filtering and IPSEC vpn does that mean I would get roughly 9/2 Gbps or 12.2 Gbps?Looking at the comparison chart, if I was interested in the 3430 and I use SSL decryption, threat prevention\wildfire...

roma_0-1648500614096.png
roma by L2 Linker
  • 1962 Views
  • 1 replies
  • 0 Likes

WMI On server 2022 for USER-ID

Hi There, Have a pair of PA-3220s. User-ID was working swimmingly. Recently upgraded our DCs to Windows Server 2022 and WMI is routinely failing and showing "Not connected" under server monitor. Doing some reading on WMI and Server 2022, and it sounds like Microsoft did something under the hood in 2022 that required updates or changes from 3rd p...

kaumell by L0 Member
  • 4130 Views
  • 1 replies
  • 0 Likes

Resolved! SSL certificate for passive firewall

There is an active passive pair having SSL certificate (management only) with different CNAMES (its own management IP). While the CSR generation and certificate import (signed by ECA) is successful on active peer, the CSR generated on passive peer is getting erased whenever commit is done from active peer. How to generate CSR and install SSL cer...

Resolved! IPSEC VPN - app-id

Hello all,We have a software ipsec connection that will be between an inside server and a server in the cloud. The PA will just be a pass through so to speak, (nating and security rule).The ipsec requires UDP 500 and 4500 and the IP 50 protocol. Do you know which app-id's I'll need for that?The palo has these 4 app-id's:ike tcp/500, udp/500ipsec...

roma by L2 Linker
  • 6682 Views
  • 2 replies
  • 0 Likes

PA-5200 MIB file for SNMPv3 need them for monitoring

PA-5200 MIB file for SNMPv3 I need them for monitoring I find them here:https://docs.paloaltonetworks.com/resources/snmp-mib-files.htmlbut the file type is .md5 and .my, but I need file type .mib or .smi to work in the monitoring software. Where I can get those files for PAN-OS 10.1

Bulk way to search logs for many IPs?

I have a list of over a 100 IP addresses that I would like to search logs to see if there has been any activity. Is there a way to search the logs files by feeding the FW a file containing the IP addresses? Thank you.

ccfritz by L1 Bithead
  • 3076 Views
  • 1 replies
  • 0 Likes

Resolved! using Azure MFA with Global Protect

Hello, To configure Global Protect to use our already Existing MS MFA server, I followed this KB: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClkkCAC I think I had to do one or two extra things as well, but in any case it's working. However, it only prompts for the second factor if after I disconnect the Global Pr...

Extending Eval license

Hi there, My Eval Request is going to be expired soon, and I'd like to extend it for another 60 days but I don't know how? Could someone please advise me how to extend my Palo Alto Eval license ? As I can't see any options in Palo Alto portal for license extension.Thanks

AK74 by L2 Linker
  • 3113 Views
  • 1 replies
  • 0 Likes

design help

Hi all , I have the above topology , Now the question where should iI keep the dmz zone on edge firewall or dc firewall Thanks

pa dmz.JPG
simsim by L4 Transporter
  • 1814 Views
  • 1 replies
  • 0 Likes

FQDN resolution failures in Palo Alto

HelloWe are experiencing FQDN resolution failures in Palo Alto.The Palo Alto has connection to the internal DNS; however, it does not resolve the FQDNs. Please could you help us to verify this issue. Regards

Alpalo_0-1648455350096.png
Alpalo by L4 Transporter
  • 2701 Views
  • 1 replies
  • 0 Likes

CPS average for DDos protection configuration

Hello Team, I have a problem with the choice of CPS average value. When i made the command show session info which parameter I have to consider to calculate my CPS rate average ? Number of allocated sessions or packet rate or New connection establish rate. Number of sessions supported: 196606 Number of allocated session...

Mamoudou by L2 Linker
  • 4376 Views
  • 6 replies
  • 0 Likes

Palo Alto - dot1q tag Errors with Meraki switch

Hi, First post on the Palo Alto side for me. Used to post a lot on the Cisco Support Community forums 🙂 I thought I would ask around here if anyone had any ideas what might be causing this problem before I go ahead with some more troubleshooting myself. I have a Palo Alto PA-220 firewall that is connected to a Cisco Meraki switch. The switch is...

JouniF_0-1648114223727.png
JouniF by L0 Member
  • 4965 Views
  • 1 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks