This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 776 Views
  • 0 replies
  • 0 Likes

Resolved! IPSec tunnel initiation from specific IP

I need to have my IPSec tunnel initiate from a specific IP address on my outside interface. In the IKE gateway | local IP address field I can only select the outside interface IP/subnet and then the tunnel uses that default interface IP as the source

...

Syslog listener to python script possible??????

Does anybody know how, or can offer some clues, as to how I could get the platform to call a python script to use an external API as a result of a syslog message. I know the syslog daemon passes the messages to Minemeld in JSON format, but what would

...

Resolved! Reason why the GlobalProtect session is disconnected

Hi Guys,

 

Some of our users experience disconnects from our GP VPN. When it happens it always impacts a partial set of the clients not everyone. I would like to know a method in which I can determine the reason of the disconnection.

 

In the Monitor-Log

...

olloczky by L1 Bithead
  • 15884 Views
  • 7 replies
  • 0 Likes

Resolved! PBF and ipsec

HQ Network and Remote Network location are always through MPLS
PBF is configured with path monitoring for forwarding via MPLS and if mpls fails
traffic will be through ipsec_1 tunnel according to pbf created in palo alto.
How to configure in palo alto i

...

bit_byte by L2 Linker
  • 3174 Views
  • 3 replies
  • 0 Likes

Resolved! PA-3320 Session's Setup Alerts for session limits reached

Today we had a networking issue that was random and hard to track down.  Turns out to be DDOS attack to our Citrix.  Since the Dashboard on the GUI doesn't show the BIG RED OMG Light when your maxed we missed it for sometime.

does anyone know how to s

...

PAlmart_0-1610051721540.png
PAlmart by L1 Bithead
  • 2955 Views
  • 1 replies
  • 0 Likes

delete ikemgr.log without impacting existing VPN tunnels

This file is getting too big for me and it takes forever to search for things in that file.  I would like to purge/delete this file WITHOUT impacting existing VPN tunnels.  I want to be able to debug VPN tunnels later on as well.

 

1- delete debug-log

...

dtran by L4 Transporter
  • 4280 Views
  • 4 replies
  • 0 Likes

Resolved! Routing problem

I am configuring a new AP-850. MGT port works fine and I can access the Internet. Now, I configure ethernet1/1 to access the Internet. 

I also configure the routing. But can't ping 8.8.8.8. Do I miss something or how do I troubleshoot it?

 

 

 

 

pa-5.JPG
pa-6.JPG
boblin by L2 Linker
  • 5527 Views
  • 7 replies
  • 0 Likes

Resolved! Add production firewall to panorama

Hi All,

We are using PAN Firewalls on 9.1.5

We have 2 HA pairs both in production with around 100 policies on each and Global Protect on 1 pair.

 

We have purchased Panorama VM and want to add the firewalls to Panorama. 

Now I did find some previous artic

...

VPN Problem - Ping from Loss

Good afternoon;

 

Currently I have a PA-820 device which is updated to the latest version 9.1.1 of PanOS.

 

Every time I am connecting to the VPN, the ping is lost after a few minutes.

 

I'm checking and the VPN is still connected, even if I connect to a r

...

04-01--2021_17-01-57.png
04-01--2021_16-57-55.png
04-01--2021_17-06-09.png

Resolved! Change management ip of cluster nodes.

Hello,

 

We have 3200 series HA cluster .

 

The requirement is to change the ip addrrss of management interface of both the nodes.

( Note we are not changing the ip address of panorama )

 

All the required rules and routes are in place .

Can we change the ip

...

Problem accessing internet when install globalprotect Mac

Hi.

I've updated my macbook to MacOS Big Sur. After that, I had internet issues. So, I uninstalled the globalprotect and the internet returned normally.

Now, I installed globalprotect again and my internet is not working again. This problem occurred wh

...

Condina by L0 Member
  • 2367 Views
  • 1 replies
  • 0 Likes

Migrating from 5060 to 5220

Hi,

  We are planning to migrate from 5060 to 5220 both should be in PAN-OS 8.0.7 releases.

As per article at https://live.paloaltonetworks.com/t5/Management-Articles/Hardware-Migration-from-PA2000-to-PA3000-or-PA5000/tac-p/156354#M4307 taking device s

...

IKEv2 - Unexpected ipsec key delete event

Hi All,

 

I'm a medior network engineer who just got into a new position where I deal with PA FWs. I face the following issue now:

 

There is an IPSEC site-to-site VPN between my PA-850 (ver. 9.1.3) and a remote FW (I'm not sure about the remote device t

...

olloczky by L1 Bithead
  • 5772 Views
  • 2 replies
  • 0 Likes
  • 23985 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks