This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4441 Views
  • 0 replies
  • 0 Likes

PA-3020 Dataplane 100%

We have aggregated ports for the PA to "handle" what Consolidated has for us on a 2GB circuit. Is this a case where our 3020 can't handle the traffic we have or is excessive logging a more likely culprit. GoldSeal has our support and the need for immediate help is basically non existent. Any suggestions on how to determine dataplane issues or...

sgarvin by L0 Member
  • 2932 Views
  • 3 replies
  • 0 Likes

Resolved! Template Variables - vrouter destination

I seem to not be able to use a template variable as a route destination in a vrouter. There is an option to create a variable in the destination field, but it becomes an invalid option after creating. If you know how to make this work, please let me know.

jasonrakers_1-1647027402719.png
jasonrakers_0-1647027347760.png

Resolved! iBGP Between Palo Alto and Cisco Router

Got two Cisco ISR 4431 as border routers peering with 2 ISP. Got PA-850 that I need to configure as:HAiBGP - OSPFconfigured ip unnumbered on the Palo Alto interface connecting to the Cisco Any configuration example out there that can assist will be really appreciated

Resolved! XFF When Using DNS Proxy Object

Hi All, I am using DNS proxy and as such all the threat logs that are to do with DNS requests only have the firewall IP in them, all users are using Global Protect and I have enabled x-forwarded-for headers for user-id. Is there anything else that I need to do or is this unsupported ? Thank you in advance,

Problems with Windows User-ID Agent and the normalized Users

Hi together, I have here a Windows User Agent (tested with Version 9.1.1-8 & 9.1.2-9), which has connected to one Active Directory (MS2012 R2) where they scan the events. The rights from the agent user looks good and they find many client users. But after a few seconds the usernames normalized here. Domain structure: com...

kan3de by L1 Bithead
  • 7890 Views
  • 6 replies
  • 0 Likes

PA-460

Hi, I need assistance for PA-460 HA1 and HA2 connectivity. PA-460 doesn't have dedicated HA1 and HA2 ports. And please let me know do we need dedicated links for HA1 and HA2 between two devices ? Regards,Suresh

surkumar by L0 Member
  • 4186 Views
  • 1 replies
  • 0 Likes

Help With Configure PA-220

I am trying to build firewall from scratch. Our use case is to secure 3 servers with separate DSP connected to PA-220. We do not have any managed switch or router between ISP to firewall. It is direct from modem to firewall. Can anyone help with this? Palo Alto's documentation isnt helpful as I am not network guru.

Traffic monitor incomplete

I've got a new Global Protect portal/gateway. When I get connected to the gateway, I can see the connection via the GP monitor. Then if I go the to traffic monitor and search the source range 192.168.203.0/24 I only get traffic from previous testing that I've performed. I'm not getting the currently connected device to show up for some reason...

danoman2 by L3 Networker
  • 3614 Views
  • 4 replies
  • 0 Likes

I cannot enter maintenance mode on a PA-220. I recycle power and have console cable connected - tried USB and also roll-over cable. Tried 3 different

I cannot enter maintenance mode on a PA-220. I recycle power and have console cable connected - tried USB and also roll-over cable. Tried 3 different software emulators - Putty, TeraTerm and Mobaxterm.When it comes enter Maintnenance Mode no prompt comes up most of the time, on the few occasions it does I can only type "Ma" and when I press ente...

ICT-FODC by L0 Member
  • 8022 Views
  • 2 replies
  • 0 Likes

URL FIltering

I was curious if anyone knows why even when traffic is flagged as a threat by URL filtering there are still packets being sent and received?

Resolved! Certificate dependancies

Hi, We use a lot of certificates within our Palo Alto/Panorama setups. Is there a way to get a spreadsheet/PDF etc... to tell me what though certificates are attached to providing services for etc...? Is there a way to link certificates to what they do/are used for?

  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks