This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4105 Views
  • 0 replies
  • 0 Likes

Resolved! Hit count cannot increase after NAT

Hi U-turn nat is configured for trust user to ping server located at DMZ. After the user ping the server from trust zone to dmz zone, the security policy count increases, but nat policy count does not increase. Is this normal? if not, why it happen? thank you

DavidyPalo_0-1640898101134.png
DavidyPalo_1-1640898440563.png

Communication between 2 network segment

Hello,I have a PA-220 firewall. There is a normal switch connected on ethernet 1/4. The switch is connected to the equipments of 2 network segments, 10.1.240. * and 192.168.5. * . These equipments need to communication now. But I can't change their IP. Can I do this through the port settings of the firewall?My idea is to add a new sub port to et...

1.png
2.png
3.png

Resolved! PAN OS upgrade from 8.1.15 to 9.1.12-h3

Hi, My client is planning to upgrade their Panorama and PA5220 (x4) current PAN OS v8.1.15 to 9.1.12-h3.Panorama > PA5220 x2 (HA) > PA5220 x2 (HA) Just want a second opinion of below upgrade path is correct or not, and other pre-cautionary advise. 1. download 9.02. download and install and reboot 9.0.14-h33. download 9.1....

Script to automate the baseline configuration after initial palo alto deployment

Hello Guys, I have prepared the "SET" commands which configure the baseline settings. I can able to run the full set command from CLI. I would like to know any options where I can run these command from a Linux machine where the system take the commands from the local script and loginto the palo alto and execute the commands. Also need to print ...

SPG by L0 Member
  • 7101 Views
  • 5 replies
  • 0 Likes

SSL Decryption and Forward decrypted content to WildFire Query

Hi Team, I have below 2 tasks which needs to be closed from PaloAlto Level. Appreciate your quick response. Task 1 "1.Configure SSL Forward Proxy for all traffic destined to the Internet" As per the Best Practices we have to enable ssl Decryption for Internet Traffic for that we have to push Certificate to Domain users but My case we have ...

Global Protect is constantly causing network errors.

Since November I have been experiencing issues with Global Protect VPN not connecting properly. Global Protect either causes a slow down in my internet or my local internet to go out with a bunch of "DNS error" or "Network Change" error or "Network not found" errors (Remote Desktop specifically) Has anyone else ever experienced this problem bef...

Resolved! Viewing BGP traffic logs

We have BGP setup between our core switches and out Palo Alto FWs but I never see any traffic logs for port 179 or application BGP on the Palo Altos. How do I go about seeing this traffic ?

iqbal786 by L0 Member
  • 13554 Views
  • 2 replies
  • 0 Likes

Sort feature would be helpful

I'm fairly new to Palo Alto gear and wanted to submit a suggestion about adding a sort capability to the information presented in the various tabs/pages. Just a few examples on the benefits of being able to sort: Trying to find that one rule where you know the name of it, but can't quickly spot it because you can't sort the name of the rules alp...

HTTP brute force alerts to gameplayapi.intel.com

I have started noticing PaloAlto firewall generating a lot of HTTP brute force alerts with the URL gameplayapi.intel.com/api/games/getagsgames2/ . Do any of you aware of what this could be? I couldn't find anything malicious related to this but I'm seeing so many users reaching out to it. Thanks.

Global Protect Gateway External: Could not connect to gateway. Please contact your IT administrator.

Hello everyone. I wonder if anyone else has had this issue. I'm using Global Protect version 4.1.4 on Windows 10. Everytime I try to connect I get the error "Gateway External: Could not connect to gateway. Please contact your IT administrator" I'm baffled since I can connect to the portal no problem via web browser, tracert or ping. If I conn...

gp.JPG

Resolved! GlobalProtect - failed to allow *.google.com through the VPN

hello everyone Merry Xmas, Our SSLVPN has tunnel split enabled, but I want to allow all my traffic or the *.google.com through the VPN, so I tried:1. added 0.0.0.0/0 to here, does not work.2. added *.google.com to here, does not work. Can please someone let me know do I still miss something? Thanks

DongQu_0-1640352331374.png
DongQu_1-1640352422177.png
DongQu by L2 Linker
  • 7682 Views
  • 8 replies
  • 0 Likes

Firewall dropping HTTP only from specific source network

Hello. I've come upon an extremely strange situation that I'm hoping to get some assistance on. I've already opened a case with Palo support, but they seem to be at a loss as well. For one specific internal network, the edge Palo Alto is dropping HTTP (80) packets at the internal interface. Even more strange, it seems that packets are somehow ch...

mhill99 by L0 Member
  • 3418 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks