This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4119 Views
  • 0 replies
  • 0 Likes

CPS average for DDos protection configuration

Hello Team, I have a problem with the choice of CPS average value. When i made the command show session info which parameter I have to consider to calculate my CPS rate average ? Number of allocated sessions or packet rate or New connection establish rate. Number of sessions supported: 196606 Number of allocated session...

Mamoudou by L2 Linker
  • 4377 Views
  • 6 replies
  • 0 Likes

Palo Alto - dot1q tag Errors with Meraki switch

Hi, First post on the Palo Alto side for me. Used to post a lot on the Cisco Support Community forums 🙂 I thought I would ask around here if anyone had any ideas what might be causing this problem before I go ahead with some more troubleshooting myself. I have a Palo Alto PA-220 firewall that is connected to a Cisco Meraki switch. The switch is...

JouniF_0-1648114223727.png
JouniF by L0 Member
  • 4966 Views
  • 1 replies
  • 0 Likes

Microsoft Quick Assist

Hello all, new to the group & firewall management, so please bare with me 🙂 Wondering if there's any information from anyone using Quick Assist? It opens in error & before I start digging, just thought I would ask.Please point me in the right direction if known. I'm currently looking for a single solution to provide IT support across a ...

Resolved! Destination NAT Round Robin for Load Balance Traffic for Web Server

I have 3 web servers which have 3 different static ip. .11.12.13 I follow below guide try to load balance the traffic for all 3 web servers. Configure Destination NAT Using Dynamic IP Addresses (paloaltonetworks.com) I already did those steps but instead of using FQDN, we use 3 IP address (192.168.x.11, .12 and .13). into an address group and pu...

JiaXiang by L4 Transporter
  • 16326 Views
  • 9 replies
  • 1 Likes

Low Disk Space on VM-500

Hi, How do I clear disk space on a VM-500? Software version 9.1.3 I noticed that there was an issue when the device stopped collation logs (i.e. traffic/threats etc...)When I looked at the disk space it says Is this limited space why the logging has stopped. No config changes have been made to stop the logging. How do I free up some space? TIA

CraigAddison_0-1648205390020.png

Secure FTP from a single domain only

I have an inbound SFTP, I need to secure access to from only a single domain, say *.mydomail.com/. I have tried with a URL category in the security policy. This does not seem to work. The source is in AWS, so to much of a hassle to manage a source ip list to allow. The source owner says he is AWS-US-EAST-1 zone. However the source IPs he listed ...

Resolved! DNS sinkhole vs DNS security

Hello all,I enabled DNS Sinhole on my palo and it is working fine. But now I'm interested in the DNS security license. Please help me understand some things?According to PA documentation since I have TP\\AV\\WF licenses, when a DNS query is made to a bad site the firewall will check its local DNS signatures which will hold a capacity of 100,000 ...

roma by L2 Linker
  • 5366 Views
  • 3 replies
  • 0 Likes

Yandex safe search is not working

Hello Experts, We have enabled safe search in URL filtering & also added response page given by Palo alto from given link below. However when we implemented it, it works fine with yahoo, bing and google. however it doesn't work with yandex. Transparent Safe Search (paloaltonetworks.com) As per palo alto it should also work with yandex but it...

Hey there

Hey there, Today I joined the community to enhance my Palo Alto and Security Leanings.. Thanks guys in advance. Hoping for great learnings and knowledge sharing!!

Query on Syslog filter builder

Hi Folks, We had configured to forward the system logs for severity of informational, medium, high and critical using filter builder. But we are receiving logs only for informational on our QRadar Syslog. What is the supported format for System log forwarding in PA firewall, we can select only one severity type for each entry or multiple severit...

tamilvanan_0-1646669140328.png

Global Protect MTU setting overwritten

Trying to set MTU for my GlobalProtect client.I've found some information about this in Palo Alto docs.I could not set it with netsh, I think it is because of GPO.But I could set it with the PowerShell command: SET-NetIPInterface -InterfaceIndex 3 -NlMtuBytes 1300When looking in the registry I see now MTU 1300 on the interface to which is assign...

ChrisCon by L2 Linker
  • 4577 Views
  • 2 replies
  • 0 Likes

User-ID limitations for distribution

Hi folks ! Would like your advice on a specific issue about user-id limitations : One of our customer is using one central firewall to redistribute user-id mapping to more than 100 devices, and has issues about user-id process crashing on the central fw.As far as i understood limitations on user-id redistribution, there is a limit of 100 redistr...

HA to standalone best practise

Hello, Good day, I have found many articles related to configuring standalone to HA. However, I don't find related articles for HA to standalone. Is there any good reference guide for changing role from HA (active-active or active-passive) to standalone (including best practise) or pre-caution and steps that we need to take note with and without...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks