This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 519 Views
  • 0 replies
  • 2 Likes

Ransomware Prevention / Detection / Response Resources

There are many articles, guides, and resources available across various Palo Alto Networks properties to guide users on how to best protect their organizations from ransomware. After spending some time to find many of them, I thought I would share wi

...

KPawlak by L1 Bithead
  • 4527 Views
  • 2 replies
  • 2 Likes

Resolved! IPSec VPN with overlapping networks

To begin with I know the document Configuring IPSec VPN between overlapping networks.

Due to my lack of experience still I am not able to understand how I should create the NAT rules.

My objective is to configure the IPSec tunnel only on "my" side - on

...

SAML Captive Portal

Hi All,

i'm trying to configure a SAML authentication for captive portal but when i'm trying to export metadata and selecting captivel portal i'm not able to export, it shows no option:

if I try to type an address and click ok the file generated contai

...

HygorPeixoto_0-1607522196574.png

Resolved! dhcp client class-id setting

Dear all,

a potential FTTH provider requires a special option for the dhcp client in order to work.

CISCO setting like:

ip dhcp client class-id 100008,0001,Cisco,e02f.6d21.xxxx,15.3(1)T,FCZXXXXXXXX


Is there any change to set the dhcp class-id for the dhc

...

Resolved! want to know options to disable GP connection

Temporary we want to disable test GP setup. Found below options :

* Create deny rule for GP public ip.

or

* remove fqdn/ip of external gateway from GP Portal > Agent

or

Disable Tunnel mode , GP gateway > Agent > Tunnel Settings > Tunnel Mode

 

Is there any

...

Deepak25 by L3 Networker
  • 2768 Views
  • 3 replies
  • 0 Likes

Resolved! Recommended Pan-OS version

I have a 5220 that I am using as core L3 segmentation router for my 500 user environment. Currently running 9.1.3 Pan-OS and  What version of PAN-OS is recommended for this scenario. Is it generally advised to install the latest version posted on dev

...

PaloAlto TAC support has gone missing

Opened a S2 (high) ticket at 11am ET this morning about panorama in High Availability in suspended mode after upgrading from 9.1.9 to 9.1.10.  No response from TAC support after two hours.  I called in and have been waiting for over an hour with no o

...

dtran by L4 Transporter
  • 4907 Views
  • 9 replies
  • 0 Likes

Java Cert error due to decryption?

My organization is in the process of moving from one VPN solution to GlobalProtect. We are seeing several applications being unable to run certain features, or run successfully at all, and the error logs appear similar to this (I say similar because

...

How to allow policy destination by URL

Hello,

 

I need know how to allow create policy in PA firewall 3020 and add destination as URL name as (microsoft office 365) instead of adding all IP ranges.

 

Appreciate your help

 

Thanks

mmarie by L0 Member
  • 9845 Views
  • 3 replies
  • 0 Likes

global protect vpn with DUAL ISP

Hi Team,

 

we have two isp link with ecmp load-balancing enabled. we only have one virtual router setup. we have configured GP vpn portal with one isp interface and how can i configure the GP vpn with second isp link as well. we would like to have two

...

Global Protect Enforcement Bypass

Hi All,

 

I understand that this is a Microsoft related matter however I'm interested to see if anyone else has come across this issue.

 

With Global Protect Network Enforcement in place (through the Portal Config), it is still possible for local admins

...

Josh990 by L2 Linker
  • 6068 Views
  • 5 replies
  • 0 Likes

Configuration checks against CIS security benchmarks

Hello All, Do any of you compare local firewall or Panorama configurations against CIS benchmarks for security compliance checks ?

Either using an existing tool to check Firewall compliance with the CIS (Centre for Internet Security benchmarks) recomm

...

  • 23731 Posts
  • 110 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks