This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4220 Views
  • 0 replies
  • 0 Likes

Session length calculation - PaloAlto

Hello, does anybody know, how exactly the Session length for a session is calculated in PAN-OS?Is it depended on the system time?--> Would my TTL decrease if the system time changes and therefore reset my TCP session if the threshold of the TTL is reached (Or aged-out with UDP)?Regards,Eric

EMIND by L1 Bithead
  • 6391 Views
  • 7 replies
  • 0 Likes

Anti Spyware best practice

Hi there, I wonder what's best practice in oder to identify theats via the Anti Spyware function. Most of the connections today are encrypted, so using the Anti Spyware function without ssl/tls decryption seems not to be a big security improvement. So there come the following questions to me:- is activation of ssl/tls encryption the only way?- h...

Netzer by L3 Networker
  • 3236 Views
  • 1 replies
  • 0 Likes

Resolved! TRANSFER A VALID LICENCE TO A SECOND HAND DEVICE

HiHaving a PA820 with valid license and support.I am looking for official documentation to see if its possible to transfer my valid license to a second hand device purchased online.I m in Europe, device can be purchased from Europe as well as American continent. The secondhand device is unlikely to have a valid licenseThanks in advance.

TuncayG by L0 Member
  • 8630 Views
  • 3 replies
  • 0 Likes

Configuration Log Report once a day?

Hey Folks,well i would like to forward Configuration Logs in a Daily Overview. Same like if i configure "Device --> Log Settings --> Configuration". But i don`t want to send every single entry, instead i would like to have a schedule for "config changes of last 24 hours".Do you know if there is a possibility on this? As well in reporting s...

Resolved! BGP backdoor

Hi All, In my setup, i have the use case where i need to prefer an IGP over eBGP route. One of my objectives is to try not to change BGP AD. In Cisco routers there is a feature known as BGP backdoor which allows you to prefer an IGP route over eBGP route. How can i make an IGP route preferable over an eBGP learned route? Can this be done on PA w...

IPV4 to IPV6 Internet not working

IPV4 to IPV6 Internet not working We are facing an issue accessing the internet. we have an IPV6 internet connection. we want to access the IPV6 ISP link from the IPV4 LAN subnet. we have created the source NAT policy using NAT64. but unable to access the internet. pls, help. thanks in advance

Resolved! Netflow & 3200 Series

We need clarification if our 3260 firewall requires an L3 interface for Netflow exports. The link below, "HOW TO VERIFY AND TROUBLESHOOT NETFLOW," states a 3200 series cannot use the mgmt interface, but I can't find any other sources that state the mgmt interface cannot be used.Also, to confirm, do we need a separate Netflow profile for each of ...

Resolved! How to view threats, blocked activity over time

I am trying to understand how to view threats, malicious IPs, etc over time. For instance in the ACC tab I understand one can view threats, threat source IPs etc. I am not seeing how to view trends, for example if we want to see if there has been an increase in traffic from a certain country or threats from a certain source IP. I would like to b...

ccfritz by L1 Bithead
  • 3944 Views
  • 1 replies
  • 0 Likes

GP users are getting denied random times

I have global protect v5.0.5 deployed to all Corporate Windows and some users reported that when they work everything stop to work and suddenly after 5-10 minutes is back again without disconnecting them from the global protect .This happen random times and not always .I have a user though that he reports that every day for the last week . Palo ...

using NAT to "change subnets"

Hello community, I have what I think is an odd use case for NAT but am curious if it would work.We are readdressing our campus and have a series of vending devices with no way to change the static IPs. All of those devices need to "move" to another subnet.All of our on-campus routing takes place within our core switches, with no way to do NAT th...

mnaylor by L1 Bithead
  • 7492 Views
  • 9 replies
  • 0 Likes

Changing the IP Address of Panorama

Hi Gang, We need to change the management IP address of Panorama due to a complete change in our network. It runs in, Panorama mode, and manages several firewall pairs (which forward their logs to Panorama). My questions is:Is it as easy as changing the IP address of Panorama?Then logging into the managed firewalls to change the Panorama address...

Log Collector Status

Hello -From local firewall Device > Management > Logging and Reporting Settings > Log Collector Status > Show Status it says that there is an error for Device Connectivity All of my logging is working just fine though. Is this just a bug?From command line "show logging-status" I see:>Log Collector'Log Collection log forwarding ag...

DC.PNG
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks