This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4441 Views
  • 0 replies
  • 0 Likes

Resolved! Tunnel Monitoring Setup issue

Hello, I need to enable Tunnel Monitoring for S2S VPN between PA and Cisco ISR Router.Since, we need to hide our local network behind one IP address given by client (172.x.x.x/32) so we have used that IP address as loopback interface.There are 2 Tunnels to reach client's remote network and we are using Static route (Primary tunnel with Metric 9 ...

Radius authentication with Clearpass for Firewall Webgui

Followed this KB https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClS6CAK The authentication shows successful on the inbound to Clearpass and meets all the policies required for successful login. However the Palo sits at the login then eventually fails after about 5-10 seconds and indicates incorrect login credentials....

Inked15_LI.jpg
16.png
14.png

TACACS user authentication in WF-500

Can we configure TACACS sever profile in WF-500? So that we will provide TACACS user authentication to login into WF-500. If it is possible, please share configuration steps or article for the same.

Traffic issue on the Palo Alto(zone-to-zone)

Team,On our Palo's we have a vsys defined and on this vsys we have 2 zones configured. ...... (say Trust zone and untrust zone.) We have a server in the trust zone which need to monitor the interface allocated to the untrust zone.This does not happen i.e. the server is unable to telnet to the untrust interface(to the port we enabled) and hence m...

nson2139 by L3 Networker
  • 5444 Views
  • 3 replies
  • 0 Likes

Office 365 Dynamic List

Is there any way to use the Office365 dynamic URL?https://endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7which contains IPv4, IPv6 and domain and having update every day.

URL and Threat Licenses

I have recently ordered URL, Threat and 3 yr support for 7 PA-220's. The main S/N we are using for a test application did not get a license ordered, (oversight on my part). Can I use one of the new licenses from another S/N PA-220 to upgrade and test temporarily? Then when the dedicated license comes in for my test PA I can move back. Or can I k...

Allow listing Dynamic IP sites

Hi All, We have an issue where we allow list a domain using a dynamic IP, but the host calling the domain and the firewall resolve to different addresses and the connection is drops (in most cases). We have looked at URL categories but seem to face the same issue. Can anyone suggest a solution?

AWaring by L0 Member
  • 2771 Views
  • 2 replies
  • 0 Likes

Help with using URL Category as part of a rule.

I'm trying to change my rules for allowing outgoing SFTP connections from using IP's to using URL's as more and more vendors are going to AWS and such and locking into an IP address doesn't work. I cloned my current working rule which says server x.x.x.10 can connect to IP's z.z.z.1, z.z.z.2, etc using the applications SSH and enhanced file tra...

Walt by L1 Bithead
  • 4316 Views
  • 2 replies
  • 0 Likes

Captive Portal Error Android - Iphone

Good afternoon, please your support, I have the following problem:I configured the captive portal function. Pan OS: 9.1.9 All the corresponding configurations were made, certificate, ssl decrypt, authentication rules, decrypt rulesIf I connect to a Wireless signal from a laptop, when I open Crome, Edge or IE, I look for a site and I jump the Pal...

Metgatz by L4 Transporter
  • 3859 Views
  • 1 replies
  • 0 Likes

eBGP between remote Palo Alto devices.

Folks,Similar to Cisco routers we are checking if we can form remote eBGP neighbors between Palo Altos located in different DC's.One PA is located in DC-01 and the second is located in DC-02 We are looking at this design to as both these Palo's form BGP on a IPSec tunnel to a customer location. As of now the failover is manual and we should be a...

nson2139 by L3 Networker
  • 4884 Views
  • 4 replies
  • 0 Likes

Resolved! PA and icap?

Hello world,is there a chance/way of talking icap between my squid and the PA?Thanks a lotMarcus

Resolved! Test Mail getting failed

Dear Team, We have tried to create a email scheduler, We don't have a local SMTP server. We getting the below error, Please find the packet flow below. c2s flow: source: 10.1.1.5 [LAN] dst: 172.217.194.109 proto: 6 sport: 56175 dport: 25 ...

VishnuPS_0-1630582731903.jpeg
VishnuPS by L3 Networker
  • 9728 Views
  • 2 replies
  • 0 Likes
  • 24375 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks