This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 616 Views
  • 0 replies
  • 0 Likes

License issue

Hello ,

 

we have a customer who renewed the premium partner support

 

When we go to License tab , we can see Premium Partner support renewed 

 

But when i go to Support Tab, it still shows date of 2020

 

Is it cosmetic ?  We already tried to fetch the licen

...

how to configure gre over ipsec?

Anybody know how to configure gre over ipsec ?

from the 9.0,pa support gre tunnel and only one word describe about this feature.

  • (Optional) Select Add GRE Encapsulation to enable GRE over IPSec.
    Add GRE encapsulation in cases where the remote endpoint r
...

Felixcao by L3 Networker
  • 3625 Views
  • 3 replies
  • 0 Likes

Resolved! Static route path monitor shows UP with invalid next hop

I'm running PAN-OS 10.1 on a VM-100. I have DHCP on an interface and use a script to update an address object with the default gateway from the DHCP interface. I have a static route with next hop set to this address object and path monitoring enabled

...

palo-next-hop-0.png
palo-next-hop-254.png

Resolved! IPSec tunnel rekeying

Hi all,

 

We are using tunnel monitor on the IPSec tunnels and i am wondering if rekeying childs SA, causes the tunnel monitor to bring the tunnel down. In additon i would like to know if PA stores a log of all the rekeys for each tunnel.

 

TIA

How to Convert Device Specific objects into Shared

Hi everyone,

 

Hope everyone is doing Great. 

 

I have one question regarding the shared objects and here is the problem I am facing.

 

I am trying to find the best way to convert device specific objects(addresses, services, tags) into shared objects. I wa

...

Resolved! How Palo alto HA and Cisco HSRP work together ?

How Palo alto HA and Cisco HSRP work together ?

 

For example 

===========

Here Palo alto HA is upstream devices ( lets consider PA1 and PA2 are in HA setup). 

Cisco Switches are catalyst 6509 or nexus 5 or 6K ( SW1 and SW2)

SW1 is connected to PA 1 and SW

...

perumalj by L2 Linker
  • 7433 Views
  • 4 replies
  • 0 Likes

Physical connections to vSphere cluster for VM-200

Hey folks,

 

Can someone point me to a "best practice" design guide or white paper for making the physical connections to a vSphere cluster that will run a VM-200 virtual appliance? I'm only seeing configuration guides on deploying and setting up the

...

markdean by L0 Member
  • 1862 Views
  • 1 replies
  • 0 Likes

2 subnets on the same interface

We current have 1 subnet linked to an layer 3 interface which is supplied by our isp. We have run out of ip addresses and our isp want to present another subnet but on a completely different range. (too many services to move to a new range)

Is it just

...

Resolved! API key too long

Hello all,

 

I am using the guide below to clear out UDP sessions after a PBF failover.  When I get to the part about the key parameter under Payload Format, it says the value is too long.  I am copying the exact key I generated from the web browser. 

...

ClintL by L2 Linker
  • 3062 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama with log collectors

Here is the set up.  Palo FW HA pairs send logs to Panorama and Log Collectors.  Log Collectors send logs to long term archival (LTA) such as LogRhythm.

 

Here is the issue, long term storage is not seeing the latest logs.  I guess what I don't underst

...

Resolved! Releasing and reassigning VM-50 pa-vm license key

purchase a VM-50 lab bundle last year.  pa-vm license was "perpetual"
, while the other components were 1YR subscriptions.  Subscription expired on 7 October 2021.

the previously licensed was "destroyed"  ☹️ before it could be properly deactivated.  I

...

MAAXIT by L1 Bithead
  • 3192 Views
  • 3 replies
  • 0 Likes

Best practices - Schedule - allow and block Traffic

Greetings (apologies in advance if this is a bit long)

 

Could i have some advice on what would be considered best practice for allowing and blocking certain traffic at certain times.

 

As a school (K-12) that has Day Scholars, boarder Scholars, live in

...

  • 23940 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks