This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4227 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect Agent Updates?

Most of the discussions I've heard, talk about managing your deployment with something other than the firewall (so thousands of users aren't hitting the firewall during an update). I have questions in two areas: 1-How do you handle updates when getting pushed from a centralized manager to windows clients (assuming your clients are internal only...

Sec101 by L4 Transporter
  • 14211 Views
  • 6 replies
  • 1 Likes

Gp 2fa

Hi Team, We have 2FA auth method using Radius Server for GP VPN users login.After LDAP password authentication users receives SMS Token and when user entering the token the GP VPN again prompts for the token.So eventually user receiving another SMS Token and when entering second token user getting authentication failed message on GP client. For ...

Many-to-Many NAT (Both Direction)

Hi Everyone, I am struggling to solve a problem NAT issue and need some help. I need to configure May-to-Many NAT on Palo Alto Firewall between two data centers. I have three /25 IPv4 subnets which needs to be mapped to three /25 subnets (subnet to subnet basis if not one to one IP basis) and three IPv6 /40 subnets needs same treatment. Traffi...

rthakker by L1 Bithead
  • 8599 Views
  • 8 replies
  • 0 Likes

Resolved! How to transfer license to new VM

We have Palo Alto VM-100 that we are planning to transfer to our new Infrastructure.So we want to activate license after migration.Please advise how to transfer license to new VM during the activity. Thanks in advance.

Resolved! is there a way to strip http:// from the output?

i set up a URL based output to feed into my lab box but it won't accept the URLs reaper@PANgurus> request system external-list show type url name phishing phishing Total valid entries : 0 Total ignored entries : 0 Total invalid entries : 1643 Total displayed entries : 100 Invalid urls: ...

reaper by Cyber Elite
  • 3308 Views
  • 2 replies
  • 0 Likes

Global protect IPsec retry

Hi Community, I am trying to figure out how the GP Ipsec connection behaves, if the IPsec fails to connect at the time of initial GP connection and the GP falls back to SSL, will GP retry IPsec after any specific interval? is this configurable ?. Also is there any way I can move the Ipsec connection from UDP/4501 to any other ports? Thanks in ad...

nat64 error

Hello I'm trying to do a NAT from ipv6 to ipv4. On commit I have an error "Nat64 needs an ipv4 in the rule for dest xlat" Rule : from untrust to untrust , destination ip is ipv6 and translated address is ipv4 destination NAT Thanks.

PanIst by L3 Networker
  • 5484 Views
  • 3 replies
  • 0 Likes

Download The Latest GlobalProtect Client?

I find not being able to download the latest client very frustrating. I work from home several days a week and the company I work for, has just switched to globalprotect for their vpn requirements. However on my companies client download page... https://mycompany.domain/global-protect/getsoftwarepage.esp ...they dont have the latest client ...

carterg by L2 Linker
  • 41461 Views
  • 15 replies
  • 2 Likes

DNS Resolution with global protect.

Dear All,I am facing some issue with DNS resolution. below is the scenerio. I have Global Protect VPN setup.after connecting global protect, i will take RDP of some internal machine.RDP will take by host name example:- system1.abc.com resolved by IP address 192.168.1.15system2.abc.com resolved by IP address 192.168.1.16system3.abc.com resolved...

Jafar_Hussain_1-1617959764286.png
Jafar_Hussain_0-1617959726226.png
Jafar_Hussain_2-1617959892551.png

Packet capture drop stage shows production traffic

I have been troubleshooting a intermittent issue where a device that sits behind my Palo Alto running 10.0.0.3 is frequently losing it's connection for UDP port 2156 traffic. Today I ran a packet capture on the PA using the "drop stage" while the connectivity was lost and there was my missing traffic, right there in that capture.When connectivit...

VMware Horizon View via Load-Balancer

Hi All, First time posting here. We have a fairly large deployment of VMware Horizon View and we're recently migrated from our old firewalls (Fortigate) to Palo Alto and since then inbound connections to our View Platform at this site have stopped working. The basic inbound connection follows this flow:External Client --> Palo Alto External -...

licenses renewal

I'm in need to renew the licenses of a PA-220 LAB registered under my PA account and I need help from someone else that is not who sold this device to renew the licenses. I'm looking to buy the licenses renewal. ThanksLicense PAN-PA-220-BND-LAB4-RPA-220 Lab Unit Renewal Service Bundle (Threat Prevention, DNS, PANDB URL Filtering, GlobalProtect, ...

Resolved! dynamic external lists sources

Hello,I am trying to use the Palo Alto Bulletproof, high Risk, and known malicious dynamic external lists. However, I can't add them because the sources aren't listed in the drop down menu of the "Add External Dynamic List" window. I read that it uses the content updates to get those. I am up to date on the Application and Threats Dynamic Updat...

nwnetadmin_0-1617919188682.png
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks