This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4240 Views
  • 0 replies
  • 0 Likes

Resolved! Secondary external ip adress help me please

Hello there,First of all, my English is not very good, so I apologize. I'm new to Palo Alto. So I'm a bit of a novice. In the structure I use, there are 10.0.15.15 - 16 - 17-18-19-20 external world ip addresses. These are separately assigned as mail server, backup, wifi. Let's consider one of them as connecting the 10.0.15.19 Wifi network to the...

acigdem by L0 Member
  • 4404 Views
  • 3 replies
  • 0 Likes

facing difficuty in terminal server agent

One of our clients facing an issue related to the terminal server agent. when the user is trying to connect VMware, it is connecting directly but when the user gets disconnected due to fluctuation in electricity or some other issue that time when a user needs to launch the session again that time it's not getting connected. But if before the ses...

termina_error.PNG

Weird scrolling behaviour in the LIVEcommunity WebUI

Hi,I started today with paloalto LIVEcommunity. I am currently reading through many pages and as a personal behaviour I try to open interesting pages as new tabs without leaving the current one. After reading the current tab I switch to the next and so on. When switching to a tab from the LIVEcommunity that had been opened for a while within thi...

Edit Security Policies simultaneously

Hi All,I was wondering how can I edit all the security policy rules simultaneously If I want to make any change in specific field. For example I have 80 security rules and I want to change Source Address of each rule so how can I edit this field for all the 80 rules? Do I have to edit each rule individually or is there an easy way to do it? Any ...

syslog query

Hi team, We have 1000+ security policies and 2 Syslog servers. can we enable two Syslog profiles simultaneously on the same policy Also, how can we enable the Syslog profile in the bulk policy or in 1000+ policy we need to add the Syslog profile manually Kindly put your valuable inputs on this. Regards,Vishnu

VishnuPS by L3 Networker
  • 2682 Views
  • 2 replies
  • 0 Likes

Resolved! VPN failover with Dual ISP with single VR & single Firewall

Hi, Below link explains about vpn failover with dual isp and dual vr, but cant I use same VR. https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-a-Palo-Alto-Networks-Firewall-with-Dual-ISPs/ta-p/59774 Why its mandtory to use two VR. with regards,Ram

ERR_HTTP2_PROTOCOL_ERROR

Hi,We have recently upgraded our PA3200 to 10.1.2 and while we try to access a few sites are not accessible. SSL Decryption has been disabled globally. Still, while we access the URL from our network on any browser we get the above error. I have tried adding the URL in the SSL Decryption exclusion list to see if that resolve the issue it did not...

High Logging Rate

As seen on Panorama > Managed Devices > Health I have a few firewalls that are always in the red with a 15-Day average over 15000. What is the easiest way/best way to bring that down? Is it even an issue? Should the fix be on the Panorama side or FW side?

Resolved! CVE-2021-3059 - clarity on disabling dynamic updates

The Security Advisory for CVE-2021-3059 suggests disabling dynamic updates as a workaround for the vulnerability. However, it specifically says to go to the Device Deployment > Dynamic Updates interface (which is in the Panorama tab of my deployment). How is that different than if you have schedules set under the Device Tab > Dynamic Upd...

SIP ALG need to be disabled

We need to block SIP ALG on our firewall which is running 10.0.7.Which does not have the option to disable under object---->Application---> SIP.I came across with this documenthttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEsCAK which stated to disable the SIP ALG but as this PAN OS doesnt have the option pleas...

Frequency of l2ctrld.log entries

We have a case open with TAC at this time, and they noticed when looking for LACP issues that our l2ctrld.log on a few firewalls have not updated in some time - some have entries in the last day, others have not had any updates for over a week. I have been trying to find confirmation on what all will trigger the l2ctrld daemon to add to this log...

hhorsley by L0 Member
  • 2756 Views
  • 1 replies
  • 0 Likes

ping -a not resolving name anymore

Hello Bro, In our network we used to be in the same vlan of our employees endpoint and we used to use the command ping -a x.x.x.xto resolve the name of the pinged IP.after we have moved our PCs "admins" to a different zone, now we can't use this command anymore, the ping is working but the paramenter -a is not getting any names.knowi...

Syslog Forwarding to different log server

Hi All, We need to forward Logging to SIEM server which is routed via Ethernet1/2 , We are already having service route configuration for forwarding logs to our own Syslog Server via management interface, Any option to have this connectivity in place.

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks