General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 469 Views
  • 0 replies
  • 0 Likes

Resolved! PA-200 Stuck in Maintenance Mode, attempting factory reset

I'm attempting to factory reset a PA 200 that was on the spares shelf.

 

The unit appears to be stuck in Miantenance mode, every reboot command boots in maintenance mode.

 

I attempted to execute the factory reset and the message I get is:

"No curren

...

Resolved! Redistribution UIA not working...... INTERNAL ERROR

Hi,

I configured a PA in order to redistribute UIA mappings to another FWs. All the config is OK but its not working.

 

I can see this in the FW redistributing:

 

(active)> show redistribution service status

Redistribution info:
Redistribution service

...

BigPalo by L4 Transporter
  • 687 Views
  • 3 replies
  • 0 Likes

Resolved! Modify System Alerts

I'm wondering if it's possible to modify alerts in PAN-OS. We've enabled email notifications for critical alerts and I'd like to change one type in particular. Our firewalls begin sending alerts related to license expiration 30 days in advance. Is it

...

IpSec VPN Phase1 negotiation problem

Hi All,

 

I have two 4G router and two ipsec vpn tunnel. Routers are exactly same.

VPN configs are exactly same (except Ips) one tunnel up and running but other one failed at Phase1

 

It gives me "IKE phase-1 negotiation is failed. Peer\'s ID payload 192.

...

Lacrymae by L1 Bithead
  • 6913 Views
  • 5 replies
  • 0 Likes

UIA user normalized issue

Hi,

We have 2 cluster firewalls with the same config for UIA and Group mapping.

 

If i look for an IP. show user ip-user-mapping all | match IP

I cant see a different behavior.

One cluster shows user as use@domain and groups where this user belongs -

...

BigPalo by L4 Transporter
  • 281 Views
  • 1 replies
  • 0 Likes

Palo alto interface DHCP

I have configured DHCP on 4 interfaces, each DHCP on a different subnet. I connected each Palo alto port to a unique switch with the understanding that all devices connected to particular PA port will get ip addresses only from the corresponding DHCP

...

PA440 HA failover not working

I'm having an issue with a HA failover with 2 PA440s. When I finished setting up the HA for both firewalls the first time, I was not able to sync them, it threw me a strange error and after some research, I found documentation where it stated that I

...

Resolved! Recommended PAN-OS version

Hi community

 

Today I was informed by @pshanubhog that there now is an article available in the live community about the recommended/preferred software versions by PaloAlto Networks support. The article contains the preferred versions by support for P

...

Remo by L7 Applicator
  • 580633 Views
  • 17 replies
  • 18 Likes

Active-Active NAT Rule Binding

I can't find anything which goes into enough detail on Active-Active design around NAT and more importantly ARP.

The easiest way to explain the current deployment is as follows:

  • Site 1 / Firewall A
  • Site 2 / Firewall B

Each firewall is connected to uni

...

CHammock by L2 Linker
  • 5190 Views
  • 4 replies
  • 1 Likes

Python: panos opstate

I'm having tremendous success automating security policy updates with the panos Python library, but I'm currently stuck on obtaining the hit counts of rules programmatically. 

 

I'm able to access all attributes of the SecurityRule objects, but the o

...

dawonk by L0 Member
  • 278 Views
  • 1 replies
  • 0 Likes
  • 24084 Posts
  • 116 Subscriptions
Labels