This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4231 Views
  • 0 replies
  • 0 Likes

Resolved! Security Policy "Last Hit" metric

Hello,How is the "Last Hit" metric for a security policy on the firewall generated? Would the timestamp be based on the session start time or the received time of the log? Intuitively I would think the former, but I am starting to think its the latter. Does anyone definitively how this works? Thanks

Pc does not join into Domain

Hi,I can not join into a domain when the computer pass through PA.This is my scennario:PC - PaloAlto - Switch - DomainControllerThe PC and Domain controller are in the same Zone (trust) and I have a security rule: from zone trust, to zone trust, permit all.I can see a lot og kerberos v5 packet with bad checksum.Regards,

Palo Alto interface does not ping after a certain period of time

We are running NMS.However, the operation method does not work internally and goes out to the VPN public IP.trust -> untrust -> isp(internet outside) -> VPN untrustCommunication is done in the same way as above. In NMS, the status of VPN untrust is monitored by ICMP.However, after 30 minutes, the VPN untrust interface suddenly stops pin...

PA without license

Hello. I hope you can help me. I currently have a customer who wants to leave one of their old APs unlicensed as a VPN concentrator. My question is the following: What functions would be active in the PA? For GP I checked this KB: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClG0CAK in which it says that it allows "S...

Policy Optimizer Reports

Hello Community,Has anyone here found a decent way to have a report generated automatically on a periodic basis for the Policy Optimizer suggestions? I.e. A PDF generated every Monday morning with a list of Unused policies in the past 30 days, etc.? Thanks in advance!

Global Protect stuck in "Connecting", "Still Working"

Hi there guys, I have a Macbook Pro with Catalina v10.15.4 and I am here because I am out of moves on how to make this software to work. Troubleshooting I've tried so far:1) Tried going to privacy and security in the settings to allow the software thru there but I never saw that as an option. I have installed and uninstalled the software many t...

Packet Buffer Congestion error

HelloWe have a couple of FW 5220 in active-passive. last 07/15 we upgraded to version 9.1.10 and we have detected that "Packet Buffer Congestion" is growing linearly.could it be a bug in this version?thanks so much

packetbuffer.png
BigPalo by L4 Transporter
  • 11474 Views
  • 3 replies
  • 0 Likes

Captive Portal HTTPS SSL decrypt

Captive Portal HTTPS decrypt Dear all: Very good afternoon, I have the following doubts and concerns:-Is it mandatory to configure SSL Decrypt ( I understand that yes, please confirm, it is for the point that when they enter a HTTPS site, it displays the captive portal in HTTPS ). Thinking to avoid having to manually pass and distribute the cert...

Metgatz by L4 Transporter
  • 3806 Views
  • 2 replies
  • 0 Likes

server hello message dropped at firewall

We are facing currently this issue with a DC firewall. The following is the environmentEnduserPC-> DC Firewall (PAN) -> f5 Load Balancer-> Web Servers All these days the users were able to login to the web services without any hassles. For the last 2 days, we found that the users are not able to access the application properly. f5 load ...

file saving issue through global protect

I'm facing issue at the time MS-Office files saving when global protect is connected.Logs showing temp file (.rels ) .When we excluded temp file file blocking profile, after that its start to saving file.But for long time we cant exclude temp file from blocking profile.So please suggest how to resolve this issue.model:-3020os:-9.0.9-h1app versio...

SurajN by L2 Linker
  • 2777 Views
  • 1 replies
  • 0 Likes

GP latency with excel add-ins

Hello allanyone faced this latency issue with excel add-ins load, it takes up to 8 minutes to load which is unacceptable from a user perspective.the only workaround i found for now is to install VDIs on premises LAN for users, so they can rdp to and open their excel sheets with add ins and that works fine.any fix exists for GP for this issue ?...

How could I using Global Protect with Google Authenticator?

Greetings everyone,Is there anyone trying Global Protect with Google Authenticator using OTP features?In past, i tried Duo Security for Two-Factor features, that need Proxy Server to connect PA and Microsoft Active Directory with RADIUS authentication protocol.Now i could implement OTP feature using Google Authenticator, but there's no any post ...

VPN on palovm deployed on Azure

Hi Team, We have palovm on azure cloud and we want to create s2s vpn between off-prem palovm which is deployed on azure and on-prem fortigate firewall. I tried to search document publicly but unable to find any resource. So please help me to provide some docs to create the same. For your reference : regards,Shiv

ShivShankarBhagat_0-1630091402932.png

User-ID ignored user list not being respected

Hello,We leverage a deployment software at our organization and when a computer is having software deployed or is being scanned for inventory by this software a service account does a network logon to create a temp service to run the process. This process generates a logon event on our domain controllers and maps the IP of the device being scann...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks