This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

Panorama Template Variables

Hi All Hope everyone is keeping safe. I'm in the process of adding a HA pair into Panorama, will use single device template and single template. To do this I need to set some variables, such as Hostname, Peer1 IP, Management IP address. I cant find the list of variables anywhere.....Only ones I can find is $ha_peer_ip & $ha_device_priority ...

NAT/PBF behaviour

Hi, I am having some trouble successfully creating a NAT/PBF combination. Long story short...: We have an office with two WAN switches that have IP addresses in the same range as that office LAN WiFi IP range. Thus if anyone in the office or on their VPN tries to SSH to these switches the core switch routes it back to the LAN as that is where th...

NAT1.PNG
NAT2.PNG
PBF1.PNG
PBF2.PNG

Site-to-Site Palo Alto VPN is Failing

I apologize if this is posted in the wrong message board. It is unclear to me where I should specifically be asking this type of question. I configured a site-to-site IPSec VPN between two Palo Alto's and they are both failing on Phase 1 and Phase 2. The local addresses are in the same IP address range and I am not able to change them. A test V...

Internet not working

Hi Guys,So we were using a router with two VLAN 10 and 20, connected to two different APs and everything was working fine.Today we purchased a firewall and we placed it before the router (refer to the image). I created two static routes 192.168.110.0 with Gateway 192.168.100.2 and 192.168.120.0 with the same Gateway. Still, we are not able to ac...

Firewall.png
Satyam by L1 Bithead
  • 3741 Views
  • 1 replies
  • 0 Likes

Resolved! PanOS upgrade strategy

Hi All,We are running PA firewalls + Panorama + Prisma Access in our environment. Our aim is to upgrade our cloud prisma plugin to 3.0 for additional features, however we are not getting the best approach to do this. Our existing environment is : DeviceCurrent versionExpected Version Bunch of firewalls in HA pairs9.1.810.1.4-h4Panorama9.1.1310...

"Error in getting config lock"

Hi, We encountered an error "Error in getting config lock" on the web gui and an error "Server error: Error in getting config lock" when we tried to run commands on the CLI. This issue has been resolved by the TAC with the help of the root engineer by using the root account to restart the management server. But we still want to know what...

Tech Support Files Fail to download for VM firewalls - Over 1Gb in size

Hi All, I have 7 VM series firewalls including 4 in Azure. They are all running 10.1.4h4 and I notice they all fail to download tech support files. The tech support file are all listed at over 1GbGUI – Fails to download if over 1Gb. When downloading from panorama by switching the context the page times out and takes you back to panorama. When lo...

SNMP Trap test

Hii need to do the SNMP Trap test from the FW's. Mainly i am looking for HW's related issues. Is there a way we can manually generate the trap and test. I am looking for these, and if any new Traps are there in recent days pls share it.panROUTINGRoutedBGPPeerFailedTrap|panGeneralSystemShutdownTrap|panHWDiskErrorsTrap|panURLEngineStartupFailureTr...

I'm curious what content is included in the PaloAlto config file.

HelloCustomers want to know what is contained in the paloalto config file (web - device - setup - operation). Customers wonder if the config file includes security rules, nat rules, routing information, and updates (such as Pan-os or app&threat contents). I also searched the related documentation, but couldn't find any of the above. Could yo...

PA-3020 Dataplane 100%

We have aggregated ports for the PA to "handle" what Consolidated has for us on a 2GB circuit. Is this a case where our 3020 can't handle the traffic we have or is excessive logging a more likely culprit. GoldSeal has our support and the need for immediate help is basically non existent. Any suggestions on how to determine dataplane issues or...

sgarvin by L0 Member
  • 2817 Views
  • 3 replies
  • 0 Likes

Resolved! Template Variables - vrouter destination

I seem to not be able to use a template variable as a route destination in a vrouter. There is an option to create a variable in the destination field, but it becomes an invalid option after creating. If you know how to make this work, please let me know.

jasonrakers_1-1647027402719.png
jasonrakers_0-1647027347760.png

Resolved! iBGP Between Palo Alto and Cisco Router

Got two Cisco ISR 4431 as border routers peering with 2 ISP. Got PA-850 that I need to configure as:HAiBGP - OSPFconfigured ip unnumbered on the Palo Alto interface connecting to the Cisco Any configuration example out there that can assist will be really appreciated

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks