This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4112 Views
  • 0 replies
  • 0 Likes

Resolved! IPSec VPN Ingress traffic from two different interfaces not passing traffic.

Hey All, We're having a problem in adding new traffic to an existing VPN Tunnel. We've had a VPN tunnel up for a few years working just fine, but now we are trying to put traffic from a different interface into the Tunnel and the PA is dropping the packets (found them in Traffic Capture). The VPN is out to the Internet on Eth1/1 and the origin...

rswinter by L1 Bithead
  • 5528 Views
  • 3 replies
  • 0 Likes

Authentication of Users through Captive portal query

Hi Team, We had configured captive portal on the firewall recently. In Authentication policy we had selected source users as any and we are using Active Directory for Authentication. Also we had configured agentless user-id mapping on the firewall and server monitoring to fetch details from AD server for User-IP mapping to feed onto the firewall...

Creating subinterfaces on Active Active HA

Hello , I have to create 6 Subinterfaces on A/A cluster So i need 3 IP addresses from each VLAN - 1 for FW1 , 1 for FW2 and 1 as Floating IP My question is , do i have to go to each firewall separately to configure the respective IP ?If yes , what will happen if i do commit the 2nd FW , will it create an issue ? Also ,under HA , in active , ac...

Error while creating a user

Hi All, Facing an error (application icloud-uploading not found) while creating a user on my palo alto 850 using panorama. Attaching the image for better idea. Pls help

IPSEC VPN tunnel getting disconnected.

IPSEC VPN tunnel got disconnected abruptly. We need to find out what could have caused this from the logs and adjust the VPN parameters accordingly. From logs i found this. ikemgr.log2021-10-15 03:35:112021-10-15 03:35:11.814 +0000 [PNTF]: { 5: }: ====> PHASE-2 NEGOTIATION STARTED AS RESPONDER, (QUICK MODE) <====ikemgr.log2021-10-15 03:3...

RPrasad3 by L0 Member
  • 5809 Views
  • 2 replies
  • 0 Likes

Adding a port to existing SSN

Hi - I have an existing SSN configured for a device with ports added in Objects, like to add few more ports. what are steps I need follow? Please let me know....Thanks!

Andyz88 by L0 Member
  • 1972 Views
  • 1 replies
  • 0 Likes

problem with userIDAgent in RDP

hello We have a problem with users when they connect in RDP We found a solution whit this KB: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CleBCAS but we have new questions: 1.- Is there a way to know what information the userIDAgent gets from the AD? 2.- Is there any way to limit the type of events it reads (a...

BigPalo by L4 Transporter
  • 2196 Views
  • 1 replies
  • 0 Likes

Resolved! User-ID Agent Connecting Status

Hello team I am facing an issue with User ID and AD . It continuously stays on connecting... however it seems that some user is assigning. Can someone help me? 10/19/21 10:47:24:139[ Info 2357]: ------------Service is being started------------10/19/21 10:47:24:139[ Info 2364]: Os version is 6.2.0.10/19/21 10:47:24:139[ Info 685]: Load debug lo...

Alpalo_0-1634631406756.png
Alpalo_1-1634631536035.png
Alpalo by L4 Transporter
  • 6632 Views
  • 1 replies
  • 0 Likes

Override in URL Filtering is not working

Hi Team, One of the domain is not working even after adding that domain in Allow list in override tab under URL Filtering. I have blocked one URL category in that URLFiltering profile however i have added a website/Domain that needs to allow if also it gets matched with the blocked category and it doesn't worked. So please suggest what can be do...

SahulH by L3 Networker
  • 14556 Views
  • 8 replies
  • 0 Likes

Connection HTTPS / HTTP and SSH not working

I can't connect via SSH HTTP or HTTPS to my PA-500 firewall .I can ping it from my network and that's all .Also , the strange thing it is that from panorama the device is reachable I have checked the traffic -> is allowI have checked management interface -> is allowing my IP addresses + HTTPS SSH and HTTP are ticked . What else could be th...

Nicu21 by L1 Bithead
  • 8278 Views
  • 5 replies
  • 0 Likes

Resolved! Failed to renew device certificate

Sorry, not sure what board to post this on, as it's my first support post. Getting an error on my Primary PaloAlto firewall: Failed to renew device certificate.Failed to send request to CSP server.Error: OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to certificatetrusted.paloaltonetworks.com:443 When I log onto the firewall, it shows th...

esheldon by L0 Member
  • 8636 Views
  • 2 replies
  • 0 Likes

Question about moving objects...

I have some security rules on a device group using shared addresses groups. I need to move these objects to the device group but I'm not finding an easy way so far. I can't simply move the address group, panorama doesn't allow because rules are using the shared group and won't automatically inherit the new location. I can clone the address group...

Evahi21 by L0 Member
  • 2544 Views
  • 1 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks