This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4224 Views
  • 0 replies
  • 0 Likes

datapne interface not reflected in user-id agent after changing service route

we have changed service route of user-id and ldap service from mgmt to dataplane interface of firewall. in windows based user-id agent earlier mgmt ip was showing connected,but after changing service route to dataplane interface , dataplane interface not showing in windows based user-id agent connected list. do we require to change serivce route...

Deepak25 by L3 Networker
  • 2241 Views
  • 1 replies
  • 0 Likes

Failed O365 Updates

We have two sites running PA-3020, one site is able to download O365 updates but the second site fails to download and install the updates. Not sure what im supposed to be setting on the 2nd Palo Alto to get this working. They are both running 9.0.12 update

Connection issues with globalprotect VPN

I am the only Linux user in our 4000 person company. The company got me the linux client, but they don't want to support it. I hope that somebody here can help. Note that I replaced our gateway address with x.x.x.x since I don't want to expose the company's gateway. I have the following processes running in my system, started at boot...1057 ?...

Resolved! Does Globalprotect application use certificate revocation list (CRL) to check the gateway certficates?

Hello to All, We have intermitant issues with the HIP report not being send every hour but I also see that there are some intermitant errors about the gateway certificate not being verified, I also see that there are messages in the PanGPS log "Check server certificate revocation returns" as also the portal and gateway certificates are publicly...

Resolved! GP portal error

Restriction of the users on the GP portal page. We selected a particular group in the allowed list, but authentication was failing unless we select all.

FTP application not able do the Data Transfer. Logs Showing Unknown TCP application with some Random Ports.

We have just created a simple security for ftp services. Application ftp and service port any for ftp service. We can be able to connect the server but on data transferring the connection got timed out. When we just do application and service any. These services are working properly. but the application shows unknown tcp and destination port are...

User-ID for large scale deployment

Hi,We have planned to implement user based policy in PA and we have roughly around 5k users across different locations with multiple controller as we have two options,1. Dedicated windows based user-id agent2. Palo alto Integrated user-id agentamong these two which one is best for production with 5K+ users and what is best practice for deployin...

nkmehta by L0 Member
  • 2860 Views
  • 2 replies
  • 0 Likes

Resolved! PaloAlto Bandwidth Report

Hi, I have an existing web application that I am contemplating moving to the cloud from on-prem. The app currently sits in a DMZ on a Palo 220. I am trying to determine the costs we would incur if we moved the app to the cloud. I need to get a good understanding of the bandwidth that comes into the app, and goes out. The traffic is based on h...

Troubleshooting random GlobalProtect disconnects...

Hello. i have been experiencing random GlobalProtect disconnects on my home computer. I'm running Windows 10 [1909] with GlobalProtect 5.0.8 64-bit connecting back to my office's Palo Alto firewall (not 100% sure of the version). A few times a day, GlobalProtect will just disconnect on its own. I am typically running a Remote Desktop Connection...

jrauman by L2 Linker
  • 136278 Views
  • 21 replies
  • 3 Likes

App Google Earth

Good morning, I have a problem opening the google earth client to users. For some time it seems that randomly it also needs the google-play application to be open, if you want to have the latter closed to the user there is some way to make an exception so that google earth works correctly without opening google-play, Thank you

EVelarde by L0 Member
  • 2781 Views
  • 1 replies
  • 0 Likes

PanOS ldap issue

Hiwe are facing some issues on our 3220 fw 9.1.9 (same issue in 9.1.8) ldap group membership sync is not working anymore this 3220 Fw is our Lan FWldap server profile is correctwe can add correctly group in the user group mapping, AD tree is browsablebut groups are empty or "does not exist or does not have member " the fact is that we also have...

Resolved! Replacing a managed old hardware model with a new model

Hi, I am going to replace my old 3020 9.0 panorama-managed firewalls with a pair of 5200 series FW. During the process I’ll need to change some of its network interfaces configurations with vpn tunnels on the new model. Would you advise to change the old serial to new in the panorama configuration, or should I import the new model into panorama ...

alberty by L1 Bithead
  • 8034 Views
  • 6 replies
  • 0 Likes

Replacing 3020HA to 3220

Getting ready to replace a 3020 HA - Active/Standby to a single 3220. Looking to see what the best steps to take and if there are any gotchas I should be on the lookout for. Logic tells me; Make sure both are on the same OS code, export the running-config from the 3020, then import into the 3220 and see if I get any validation errors and test aw...

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks