This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4110 Views
  • 0 replies
  • 0 Likes

HA malfunctioned due to data plane down

Hello We have PA-3220 and its running 9.0.12. recently i saw that HA status is showing that "HA malfunctioned due to dataplane failed" and we cannot push any configuration on the firewall due to "dataplane failed" error message. Please suggest what can cause this error. I also see "the dataplane is starting" critical log message under system log...

Resolved! Fan noise on PA-850 gateway

I have a new PA-850 firewall. Its cooling fans are very loud even when idle. Is there a setting where the fan speed can be adjusted?

SSL Decryption and Reddit Posting

Last year I implemented a rule to allow users in my company access to the reddit.com site. It is in our company policy to disallow sharing messages on social media, so I implemented this rule with URL filtering (chat/messages/etc...) and only allowing the appid "reddit-base", not "reddit-posting". This worked at the time, and has stopped functio...

how to monitor PA firewall interface IP address using SNMP monitoring

Below KB don't contain OID 1.3.6.1.2.1.4.20 . I am looking for this OID (provides the addresses and the link to the interfaces you've sent through)to receive firewall interfaces IP address using snmp. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClaSCAS Please confirm if PANOS 10.0.7 or any PANOS can capable of sendi...

Migrating from a pair of 850s to a pair of 3220s!

It is my understanding that I should be able to export my config on the primary PA-850 and import it to the primary PA-3220. I know that there are more RJ45 ethernet ports on the PA-3220, so I will update Ethernet1/9 to Ethernet1/13 and Ethernet1/10 to Ethernet1/14. I am also planning on using the HSCI port for HA, so I will need to update HA1...

Multiple External IPs to Multiple Firewalls

I am sure this is going to be something simple, but I am admittedly stumped (not hard to do). I have a block of External IP addresses assigned by our ISP , say 172.10.10.10/29 The gateway is 172.10.10.10 . This contains a single physical port . This is connected to a switch to allow distribution of multiple ports. I have 2 firewalls attached....

peeryog by L1 Bithead
  • 2425 Views
  • 1 replies
  • 0 Likes

Resolved! push to devices failed after upgrade to 10.0.6

Push to devices failed after upgrade to 10.0.6, we currenty try to push a change on Panorama for a pair of firewallsrunning all 10.0.6 , the commit to panorama went well , but after choice the specific device group and template stack we clicked validate to device group and this showed failed, the same for validate for template, we push anyway an...

Internet speedtest from PAN

Is it at all possible to determine circuit capacity directly from the PAN?Esentially what im trying to do is run a intenret speedtest directly from a PAN.What would be perfect is the ability to run an iperf client direclty off a PAN

ivan01 by L0 Member
  • 13681 Views
  • 2 replies
  • 2 Likes

Resolved! Routing issue with Palo alto

Hello everyone!I am experiencing an odd problem.I have 3250 HA pairs. I have configured 2 aggregate(L3 trunk) interfaces and added sub interfaces to these aggregate.The first problem is the firewall itself can not ping directly connected device by using "ping source x.x.x.x host y.y.y.y" command.Every sub interface has management profile assigne...

ESXI Server & Palo Alto: The Inside Hosts that's on the same port Group as Palo Alto (inside interface) cant ping the Palo Alto inside Interface.

I have a ESXI Server with firewall (Inside, DMZ and Outside) zonesPalo Alto has a security rule to allow interzone traffic from inside to outsidePalo Alto has NAT configured for Outside Interface When I try to ping from host to host on in the same port group...all is good.When I try to ping from host to the Inside Firewall Interface, the ping ti...

ETate by L1 Bithead
  • 2090 Views
  • 1 replies
  • 0 Likes

Unable to ping out from new zone

We are in the process of migrating our DMZ servers out from behind an ancient ASA to our Palo. I pulled a test webserver over to make sure my NAT was set and to trial out some rules.For the most part everything is working but I can't ping out from a server in our DMZ zone. We are using GlobalProtect for our VPN and from the vpn zone I can ping t...

Evahi21 by L0 Member
  • 3035 Views
  • 1 replies
  • 0 Likes

Resolved! How to Block Community Member

How can I block community member repeatedly posting questions on https://live.paloaltonetworks.com/t5/customer-resources/support-pan-os-software-release-guidance/tac-p/441609#M523?

Resolved! Security Policy Rule Actions Tab

Hello -For various reasons we no longer use "default" for log forwarding as a log forwarding profile and actually delete it and have a new one, let's call it Log_Forward. When a new rule is created, if default is still present, it will autofill the Actions tab > Log Setting > Log Forwarding with default. If, as in my case, we don't have d...

RobertShawver_0-1634317988460.png
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks