This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4444 Views
  • 0 replies
  • 0 Likes

Userid timeout - renew action

How can a user trigger/renew UserID? Is there some action a user can take on the PC that would trigger UserID renewal. Rebooting is one way and has resolved this couple of times I was reported this issue. I think logoff and Log on should also work. Or installing globalprotect agent, which we don't want to on every system. So I am looking for som...

raji_toor by L4 Transporter
  • 2083 Views
  • 1 replies
  • 0 Likes

HA4 Clustering to present a single NAT IP across two Data Centres

Can anyone who is using the HA4 cluster in production, to present the same external NAT IP across 2 data centers give any advice on how they are doing the routing. I saw in the docs that some of the security functions don't work if the traffic is asymmetric. Obviously the easy answer is to push all the traffic to one DC. Is that how people do...

Rich.H by L2 Linker
  • 4474 Views
  • 3 replies
  • 0 Likes

Connect to globalprotect vpn using verizon mifi

Can you use a verizon mifi to connect to a globalprotect vpn tunnel? This is so they don't have to install the gp client on their pc. We do not have licensing for gp to be used on phones and to me a mifi is kind of a glorified phone.

jdprovine by L4 Transporter
  • 5378 Views
  • 4 replies
  • 0 Likes

GP 5.2.5 Error authentication check failed

Hi Team, We have GP 5.2.5 on PAN OS 9.1.7Connection method is pre logon then on demand.on GP Gui logs i see error Error authentication check failed for ( eventid eq gateway-hip-check ) Even though we do not have hip check enabled on the GP.Is this error by design?how can i get rid of this error from gui logs?any config i need to modify?

Resolved! log at session end?

I have around 500 policies having 'log at session end' enabled and 'log at session start' disabled. I know Palo recommends logging at session end only but I also have a concern that for eg. a malicious file export that lasts for 8 hours and 10gigs go unnoticed if the session wasn't logged at the start. I am in a dilemma to enable the logging at ...

Resolved! IPv6 dual stack configurations.

Hello, I want to achieve IPv6 dual stack configuration on PA-850. What are the requirements for this type of configuration? For IPv4 traffic will hit to our IPv4 configured wan IP and for IPv6 traffic will hit to IPv6 configured wan IP. Please enlighten me how can I achieve my requirements. @SutareMayur @JoergSchuetter @kiwi @BPry @Brandon_Wer...

Url filtering

When user asks for providing full access what categories needed to b allowed & Blocked in URL filtering ?

KashifSh by L1 Bithead
  • 4591 Views
  • 4 replies
  • 0 Likes

DP 100%

Hi Team, We came across a situation that our DP had just gone high at a time point till 100%. I checked with the system files and found some crashes have attached the screenshot for your reference. Also all the software status where running which i checked later after the incident.also find the output of show running resource monitor. This was t...

Device Config or Full Config

Hello , I need duplicate FW config... What is your suggestion? Should I import the full configuration file or the device state file? What is the difference of upload full configuration file or the device state? Regards

Alpalo by L4 Transporter
  • 3138 Views
  • 3 replies
  • 0 Likes

Configure Secondary ILL ISP

Hey, Guys, one of my customers wants to configure a secondary ISP he change his ISP and Now want to configure the NEW ILL(Internet Leased Line) ISP. to the same interface. I configure the Virtual route, NAT and added new ISP Ip but was not able to UP that Link after I added path monitoring I took ssh and ping source ISP IP to host 8.8.8.8 gettin...

Resolved! Invalid TACACS Logins from Outside

Just setup TACACS authentication using Cisco ISE as our TACACS server. We can successfully login with our AD accounts, but when I look in the TACACS logs on ISE, I see a ton of "INVALID" attempts from external IPs. Is the normal/expected? Is there a way to just limit TACACS to our internal network?

Migrate Massives URL Category

Good Morning.I would like to know if there is a way to migrate whitelists created locally from URL Category to Panorama and that these do not affect the policies already created.Category URLs are many and I would like it to be fast and efficient.Greetings.

  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks