General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 369 Views
  • 0 replies
  • 2 Likes

Dear Palo Alto Networks:

Your firewalls are generally okay.

But, the fact that you cannot get an interface bandwidth graph without configuring some QoS hack to only show an ingress interface traffic graph is stupid.

Every firewall vendor in the world has this feature. Except y

...

getting traffic after the interface is down

Hey guys hope you doing well I got a question I get a challenge one of my user getting traffic logs of NetBIOS by source Pvt IP from LAN to WAN the device from the source side is down the 2 Pvt IP still hitting the cleanup rule. The Policy is denied

...

Disable new apps in content update

Hi Experts,

 

We've a pair of firewalls (9.1.6) managed by the Panorama (9.1.6). We've Threat prevention license in place and client would like to install just the threats and not the apps by selecting disable the new apps in content update.

As recommen

...

TAC support has gone missing, again :-(

Opened a S2 TAC case @7pm ET 07/21/2021.  The SLA response time is 2 hours.  TAC didn't get back to me until 5:43am ET 07/22/2021.  The response from TAC is very vanilla, not helpful at all.

 

Call back to TAC this morning has been waiting for an hour

...

dtran by L4 Transporter
  • 2815 Views
  • 4 replies
  • 0 Likes

Resolved! Destination NAT Error

Hello All,

 

Doing an destination Nat but getting below Error. Could anyone please help me. Also pls find below my nat rule

 

 

 

Please note : Ethernet 1/1 is my Outside Interface

 

vishal_07_2-1627031851196.png
vishal_07_3-1627032032760.png
vishal_07_4-1627032054212.png

Exception Handling in Palo Alto Support Page 7/22/2021

Hello Palo Alto Team,

I would like to bring this up with you.

I noticed that your support page went down today 7/22/2021 and that is fine. What worries me is the way your system handles exception. I think you are exposing to much that end user like m

...

Disabling bad checksum on Firewalls

Hi All,

 

We have received an request to disable the drop of packets due to bad checksum. I had the following questions on this:

 

Q1: Can i see in the traffic logs if any connections are dropped due to bad checksum.

 

Q2: This can be done by enterin

...

NAT SDWAN

Hello,

My Name is Dwi.

 

I have case with SD-WAN configuration.

I have 2 ISP DIA provider, and i want to combine 2 ISP provider in to single logical SD-WAN for Load Balancing Internet Traffic.

the Palo Alto device is under NAT, please help me to configure

...

dwinur by L0 Member
  • 3205 Views
  • 3 replies
  • 0 Likes

Using GlobalProtect , ExpressVPN and Remote desktop

Dear All,

 

I am pondering following scenarios:

 

1- I connect to Server "S" using GlobalProtect on my Computer "A". Now Assume i do not have access to computer "A" physically because i have moved to another city. I want to access computer "A" from anoth

...

shaukafa by L0 Member
  • 3478 Views
  • 1 replies
  • 0 Likes

Resolved! Always On Global Protect VPN

When I am looking at GP Gateway Users I see some USERs with
ID prelogin and others where USER matches the COMPUTER name
field. Any idea why I might see one or the other? I am using certificate
authentication.

 

 

MichaelMedwid_0-1626972848253.png

inter-vsys vs shared virtual router

Hi all

 

It seems like 1 virtual router can be shared by multiple vsys

 

Reading up

https://knowledgebase.paloaltonetworks.com/servlet/fileField?entityId=ka10g000000UADEAA4&field=Attachment_1__Body__s

1 VSYS can have all multiple VR’s as well as multiple V

...

iFAST-SG by L0 Member
  • 3946 Views
  • 1 replies
  • 0 Likes

Resolved! techsupport file info

Does anyone know if you can see session tables in the tech support file?  Trying to troubleshoot a session sync issue and wondering if I can go back and look at the table when the TS file was created.

Thanks
Joe

jdemares by L1 Bithead
  • 2084 Views
  • 1 replies
  • 0 Likes
  • 23679 Posts
  • 108 Subscriptions
Labels