This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4433 Views
  • 0 replies
  • 0 Likes

Panorama not pushing network template changes to devices

Hello, I am very new to Palo Alto FWS so please be gentle 🙂 I have been asked to setup two new PA3060 firewalls to be centrally managed by a Panorama server. Both the Panorama and Firewalls are running v8.0.5. I have successfully followed the PA instructions to import the firewalls and configs into the Panorama. However, if I create say a new...

gc227s by L1 Bithead
  • 22950 Views
  • 8 replies
  • 0 Likes

Resolved! VM series firewalls and interfaces

Howdy all I have deployed 2 VM series firewalls in VMware workstation pro but I can't get their dataplane interfaces to ping each other. I'm sure this has to do with how to configure the network adapters. I have no issues accessing the GUIs/ Management interfaces and they can ping each other as these interfaces are bridged in Vmware workstation...

Resolved! Active-Passive pair takes long to show the status when one is rebooted.

Folks,Our Active-Passive pair takes too long to show the status(i.e. active or passive) when one of the firewall is rebooted. i.e. as of now things are running fine, but if I reboot the passive firewall it will take a very long time to once again come up as passive. It goes through the "not ready" and "initial" stages before getting in the "pass...

nson2139 by L3 Networker
  • 14078 Views
  • 10 replies
  • 0 Likes

Global Protect lose internal resources access

Hello everyone, I hope you can help us. We have some users who are connected to global protect, but from time to time, they lose access to the internal resources. When this happens, they have to update the connection in the GP client to be able to access, and when they do this it works, they can access the internal resources. Has this happened t...

Outbound SQL traffic (possibly) hitting a zone protection profile

We have a process that sends MSSQL (1433/tcp) to a cloud service that occasionally just stops working - so trust to untrust. It is mostly on 'larger' data transmissions. Turned off all the flood protection in the zone protection profile on the outside interface, and there is no issue. Can I see where that is being triggered? Any thoughts on chan...

4.0.8 Object Name Change Not Updated In Policy

I used to be able to make changes to objects (address/groups/application groups) ect. But now when I made the change I have to go through my policies and NATs and update them manually. Any ideas? Is there an update object option that I'm not aware of?

Resolved! Template vs Device Group

Hello All - I am fundamentally not understanding the difference between Template and Device Group. Using teamplate i can push a policy to multiple Firewalls. Looks Device Group also does the same thing. What is the difference, and use case. When to use template and on what scenario i have to use Device Group? Thanks RB

Resolved! Client-to-Site IKEv2 IPSec without GlobalProtect

Hello, I am totally new to Palo Alto and trying to set up VPN connection from Android Strongswan VPN Client app to Palo Alto without GlobalProtect. I have requirement so client's IP is unknown and can be any public IP. At the moment IPSec tunnel is UP but I always setting error on client side: "setting up TUN device failed, no virtual IP found...

kemeris by L1 Bithead
  • 3722 Views
  • 6 replies
  • 0 Likes

Resolved! LDAP auth for the WEB UI access clarification

Hi All, Why do we need step 3 mentioned in the KB below for the WB UI authentication with LDAP?:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGuCAK Why do we need to create a local user? Won't Palo be an LDAP proxy (grabbing username/password and verifying it against LDAP server database)?

LDAP.PNG
myky by L3 Networker
  • 9501 Views
  • 8 replies
  • 0 Likes

PVLAN

Hello. I've been trying to use PVLAN with palo alto. I have two isolated host which are on the same subnet and wanted them to communicate through palo alto. I was able to manage with a switch using local proxy arp but from what I've searched palo alto doesn't have that feature. I see the arp packets from host A going to palo alto but since the d...

  • 24374 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks