This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4107 Views
  • 0 replies
  • 0 Likes

Communication between Panorama and a Firewall from outside

Hi PA Experts, We have a Panorama (10.02) that we will use to manage multiple firewalls from different companies, so it's a multi-tenant deployment. I have 2 questions for now: 1. One company is concerned about security connecting their FW to Panorama, though we explained to them it's encrypted. So they want to generate a certificate from their ...

Global Protect Single/One login Portal/Gateway

Good afternoon, I have a question: I have Global Protect configured and operating, operating correctly Portal and Gateway.When one uses the Global Protect App, it always asks 2 times for login, I understand that one is in the Global Protect Portal and then in the Global Protect Gateways. Is it possible that it only authenticates me once and does...

Metgatz by L4 Transporter
  • 3118 Views
  • 1 replies
  • 0 Likes

Timeout on syslog sourced User-ID mappings?

Greetings all, Taking another look at our user-id mappings with our server team today and we've landed on trying 90 minutes for AD. We set this on the agents installed on two of our AD servers and the firewall is showing the new logs coming in as having the correct timeout. Next, I'm trying to figure out how to do this with our wireless. With ...

jsalmans by L4 Transporter
  • 2956 Views
  • 2 replies
  • 0 Likes

PCI DSS testing failure

We are using SecurityMetrics to test for PCI compliance and have recently started receiving a failure based on TCP/IP Initial Sequence Number (ISN) Reuse Weakness (CVE-2002-1463) for the PaloAlto firewall (5.0.8).I'm not sure how to remedy the problem within the firewall. There have been no rule changes that should have caused this to start to o...

Resolved! Understanding Top Attackers Report

Hello, The Top Attackers reports lists:Source AddressSource Host NameSource UserCountIn a report I ran, all of our source addresses are internal addresses. Why is that? Is the report more of a top talkers report than an attackers report? In other words, is the report more of a list high activity accounts or addresses? Is the Count the number...

Jeff by L1 Bithead
  • 11012 Views
  • 8 replies
  • 0 Likes

Unable to sign into GP client with Azure AD SSO

Hi All, Trying to setup Azure AD SSO with Global Protect, but am receiving the below error. According, to the Microsoft documentation it means that the user is not assigned to the application in Azure, but I can confirm that the user is assigned correctly to the application. Is there anything else I can check?Thanks in advance.

BenPrice_1-1638510522152.png
BenPrice_2-1638510770774.png
Ben-Price by L4 Transporter
  • 7754 Views
  • 4 replies
  • 0 Likes

Resolved! Allow traffic to specified hosts/networks when Enforce GlobalProtect for Network Access Enabled

We've been troubleshooting some issues encountered when using the "Enforce GlobalProtect Connection for Network Access" option in our portal agent configuration. Our TAC engineer mentioned that he had seen a setting called "Allow traffic to specified hosts/networks when Enforce GlobalProtect Connection for Network Access is enabled and GlobalPr...

OwenFuller by L4 Transporter
  • 24520 Views
  • 20 replies
  • 0 Likes

PA-220 Generations / Versions

Hi All, As part of a large project I have been deploying PA220's, this has been ongoing for about 2 years and 130 boxes later. When I started the boxes were heavy as, then they were lighter and now we are onto the third variation of the PA220. Is there a list or resource that details the different variations or generations of PA-220's?? Thanks,Adz

Resolved! Panorama Log storage compression details

How does panorama log storage get handled when it comes to compression formats (panorama vm with log storage attached disks)? We have a setup where our vendor is guaranteeing some storage only if the vendor can compress those files in their own proprietary format. Does anyone know if panorama is compressing/storing logs in a proprietary format...

Sec101 by L4 Transporter
  • 5271 Views
  • 5 replies
  • 0 Likes

Resolved! Upgrade PA-3200 from 9.1.7 to 10.1.3

Hello all,I have a PA-3200 that is currently running PANOS 9.1.7 and going to be updated to 10.1.3 in the near future.I am wondering if I could download version 10.0.0, 10.0.8-h4, 10.1.0, and lastly 10.1.3. I could then install 10.1.3 and it would get the files it needs from the other version downloads and go straight from 9.1.7 to 10.1.3?I beli...

thoffman by L2 Linker
  • 2498 Views
  • 1 replies
  • 0 Likes

Basic PA FW Training Delivery

Hello PA World, Need the good community's help to deliver a basic PaloAlto FW course to trainees as part of a Networking Curriculum. Any open source resources that are available for training delivery are invited and thanked for in advance. Have already applied for the Trail VM but it may take 3 or more working days for review, dont have th...

Jpin108 by L0 Member
  • 1889 Views
  • 1 replies
  • 0 Likes

Resolved! Issue with Ticket Support Application (Get Help)

Hello, I have a problem while creating a new ticket. When I arrive to select asset or serial, at the step that says "Find Asset Tenant ID/ Serial #" I can't select the asset and because of this, I can't end the ticket. Could anybody help me? Thanks.

How to view transceiver values on the cli

I need help finding the transceiver values in a PA-5220. In Cisco world the command is 'sh int e 1/5 transceiver details'. And it produces this output.Ethernet1/5transceiver is presenttype is 10Gbase-SRname is CISCO-JDSUpart number is PLRXPL-SC-S43-CSrevision is 1serial number is JUR1932GG49nominal bitrate is 10300 MBit/secLink length supported ...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks