This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4104 Views
  • 0 replies
  • 0 Likes

Microsoft always on VPN (Windows 10 clients) through Palo Alto

Hi All,We have several Windows 10 clients (3rd Party but using our infrastructure) that need to transit through our PA-3260 to their home network via MS always on vpn. Unfortunately this does not work, we have a very open "any-any" rule in place for these but still they wont connect.Does anybody have any pointers on how to get this to work ?. Re...

Scott64 by L1 Bithead
  • 7294 Views
  • 3 replies
  • 0 Likes

PPPOE interface - dynamic IP - GP Portal

When establishing a connection via PPPOE there is no possibility to select the IP ("None") assigned by ISP in the Global Protect portal configuration, only the interface, which is not sufficient for it to work. I would expect that the IP assigned by ISP is created as an dynamic address object. To make GP work with portal & gateway, I had ...

Bildschirmfoto 2019-01-18 um 00.17.31.png
Bildschirmfoto 2019-01-18 um 00.17.08.png
pan219 by L2 Linker
  • 13865 Views
  • 7 replies
  • 0 Likes

Resolved! PAN OS 8.1 support after March 1st 2022

Hi All, I see that support for PAN OS 8.1 will end on March 1st 2022 for some Palo Alto platforms. On other Palo Alto platforms, PA-200, PA-500, PA-5000 series and M-100, support for PAN OS 8.1 will continue until their respective hardware EOL dates e.g., 23 October 2023 for the PA-500. I just wanted to double check, that all aspects of PAN OS 8...

Ben-Price by L4 Transporter
  • 4762 Views
  • 2 replies
  • 0 Likes

Captive portal

Hi Team, please confirm whether in pan-os 10.0 and later do we require SSL-Decryption for captive portal. Is SSL-Decryption is mandatory for Captive portal.

Resolved! Guidance on swinging an Exchange 2016 On-Prem server from ASA to PA 820 (vWired currently)

Hello everyone, currently I've about 3 publicly available servers still running through an old ASA5510 that I would like to move to the PA 820 that we have. 2 of them will be easy as they're basically web servers but its the Exchange server that has me concerned. I'm looking for a guide or some assistance in helping pre-create the security polic...

Knowledge sharing: Containers (Docker, etc.), Kubernetes, Openshift, Palo Alto CN series container firewalls

I hope everyone knows about the Palo Alto Beacon training platform as recently I found a great training about the CN series firewalls as we started needing security in our AWS kubernetes cluster. Palo Alto has youtube videos but they are not enough (Introduction to CN-Series and Demo - YouTube) Beacon – Palo Alto Networks Home : Beacon (palo...

Destination Zone

Hello I found in documentation : "Assign destination zone based on Interface packet would egress from" What is behind this "would" ? How is choose the destination zone , based on FW topology or routing table or ? I have set a route (next hop Tunnel interface) to a subnet and a NAT rule.I have a traffic from 2 differents source zone but same dest...

Resolved! Interface 'configured but down'

Hello, I have used interfaces in the past on a PA 3020 that were later disconnected. Those interfaces are still indicated in bright red with the message 'configured but down', including speed/duplex even though nothing is physically connected. As this is distracting, is it possible to reset each to simply grey and "not configured"? Thanks

landoa by L1 Bithead
  • 14040 Views
  • 2 replies
  • 0 Likes

static route not active

Dears, i create IPsec tunnel and add four subnet to it all subnet work good and see the other side but only one subnet not work when i look for show route found its route not active as attached the last subnet172.16.17.0/24 can any one help me

notactive.JPG
mhmad_91 by L0 Member
  • 2640 Views
  • 2 replies
  • 0 Likes

Regarding access between two sites

Hi Guys,I need help regarding access to the Web Server.Firstly, please refer to the image I have attached.Our company has 2 different sites. Site A has a Web Server with two different Websites hosted (let's say xxx.com and zzz.com) and our employees from site B connect to this web server.What we want is if User1 from SiteB connects to our Web Se...

Web Server Access.png
Satyam by L1 Bithead
  • 1844 Views
  • 1 replies
  • 0 Likes

Trouble uploading to tacupload.paloaltonetworks.com with SCP

Hoping someone can help me out. I've been on hold for ever 2 hours now unable to get support 😞 Support wants me to upload some core files to the TAC Upload server directly from the Palo device, but I can't seem to successfully do it from SCP on my Palo device.I tested that it's not a problem with the credentials by visiting tacupload.paloalton...

BHygaard by L0 Member
  • 2985 Views
  • 1 replies
  • 0 Likes

Resolved! dataplane is not up or invalid target-dp | Upgrade from 9.0.15 to version 10.X

Ran into errors with our Palo Alto PA-3250-1 after starting the upgrade process to version 10, dataplane is not up or invalid target-dp On phone with TAC (been on hold for hours, waiting for engineer). Has anyone ran into similar issues? Searched online, very few articles. We attempted reboots and restarting dataplane, issue not resolved.

SBozley by L1 Bithead
  • 8035 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks