This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

get this message with External EDL server

I have multiple firewalls that are connected to my linux EDL server to retrieve both IP address and URL list. I am using http and not https and the firewall is scheduled to pull the data every hours from the EDL web server. on the firewall system logs, I see messages in "medium" catergory like this: "description contains 'EDL(EDL_Whitelist_IPs...

dtran by L4 Transporter
  • 6973 Views
  • 5 replies
  • 0 Likes

Resolved! 3CX (Phone System) calls are disconnecting randomly

Dear Community Team, One of the customer is facing issues on 3CX call system after upgrading to new firewall PA-3220 recently. It was Forcepoint Firewall used by the customer earlier and working fine. Note: 3CX is a software-based private branch exchange based on the SIP standard. Setup:- 3CX server has been hosted outside with public IP directl...

Resolved! Remove Duplicate Address Objects

I have a number of address/service objects configured as Shared that were pushed to all firewalls. As part of a hardware refresh, a firewall was imported into Panorama into a new device group. The end result is now a lot of the Shared objects also exist duplicated in the device group. I'd like to get rid of the all the duplicate objects in th...

Resolved! Questioning about unsupported cipher suite for SSL Decryption

Hello guys.I have installed SSL decryption policy, which is forward proxy, for particular users. It's working fine but some problem occurred. Korean messenger application called kakao-talk for PC is not being able to login during forward-proxy SSL decryption policy applied. So I tried to capture the PCAPs for kakao-talk login function and they w...

Resolved! How to view the "others" in ACC Network Activity Source IP Activity

For the screen cap below I filtered the destination IP to one particular server. This Source IP Network Activity widget is showing me the first 10 IPs thattalked to it. But then all the other sessions are summarized as "others". I want to know all the IPs and to then export that information. Clickingon "others" doesn't seem to do the trick. If I...

MichaelMedwid_0-1636505380395.png

Resolved! Active Directory Users & Computers Latency with GlobalProtect

Hello Allanyone still experiencing high latency with ADUC, i tried several version of globalprotect, including the recent one 5.2.3-22, it takes me 5 to 10 min to search/display in AD users and computers. this issue keeps happening and did not see any concrete resolution from Palo Alto.the only version from what i tried which does not have this ...

Resolved! GlobalProtect client frequently disconnects with "Received a virtual interface packet with fragment"

I am experiencing frequent disconnect events which typically last 30-90 seconds and occur about 2-3x an hour during the work day. When a disconnect event happens, all connectivity is lost from the user's point of view, however the GlobalProtect client remains "connected". When these events occur, the PanGPS.log file shows the following: (T10852)...

millerh1 by L1 Bithead
  • 17513 Views
  • 12 replies
  • 0 Likes

Local policy to panorama

Hi, We have a customer using panorama to manage few clusters. For one of the location , they have just added the firewall to panorama . So we have to load the firewall to panorama and then it shows the local config like policy nat etc It is same like going directly to firewall and do the changes locally. Now customer want to make use if device g...

Resolved! PanOS 9 DHCP server and option 82

Hi, I am trying to figure out a way to use Palo firewall as a DHCP server for a network. The problem is that the DHCP discover/request comes with option 82 and I need the firewall to lease an IP and include option 82 with its original value.I am running anycast so option 82 is telling my routers where to forward the lease from the DHCP server. I...

PhilipV by L0 Member
  • 5378 Views
  • 2 replies
  • 0 Likes

Testing during Palo Alto 3000 cluster upgrade from 8.1.15-h3 to 9.1.11

Hello, I would like to know if an upgrade that traverses multiple major versions requires testing after an upgrade to each major version? Our upgrade path is: 8.1.15-h3 -> 8.1.20 -> 9.0 -> 9.0.14 -> 9.1 -> 9.1.11 Ideally, we would only upgrade one appliance in the cluster all the way to 9.1.11, though I know this is not recommend...

landoa by L1 Bithead
  • 3700 Views
  • 4 replies
  • 0 Likes

PA L2 interface ARP problem

Hi, I have a PA with two switches connected to the PA via L2 interface, in trunk. The same switches have a trunk between them. PA---SW1| |SW2--| So far so good, STP works and the network is stable. If one of the links between switch and PA falls (exemple PA to SW1) everything works too, all the traffic is redirect to PA via SW2, but as ...

DiogoFG by L0 Member
  • 4062 Views
  • 3 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks