General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Is my upgrade the cause of a vlan not working

After I upgraded my palo alto fro 7.1.15 to 7.1.16 I had a report that a certain vlan can not longer access the internet. I have a back up of the config before the upgrade and one after the upgrade and so far I don't see any change in virtual routers...

jdprovine by L4 Transporter
  • 9 replies

Arp getting time out after 30 min on sub interface

We are facing some starnge issue .We are having an ISP which is connected to sub interface.We are trying to repalce it with new one. Same Subnet /29 but different IP. NAT rules also same because same subnet.The issue we are facing is when new ISP con...

Static Routes

We have a Cisco ASA that has tunnels to our branch offices. An Example is The local network is The lan port of the ASA is The lan port of the Palo Alto is When I change the gateway to one ...

Resolved! Risky ports

What are the risky ports we should not allow from user zone (internal network) to external network (internet / external network)? Like we don't allow 21/23 etc, please suggest other ports too.....

SumitB by L1 Bithead
  • 3 replies

Resolved! excluding threats from TAP allerting?

We have a TAP interface listening to a number of vlans (internal and external) We get a lot of noise in our allerts from threats we would prefer not to get alerted on. For example, presently "SipVicious" scans are occuring all the time to what are ac...

password policy has locked out the admin

Is there a way to have an email warning if a password is going to expire? One of our palo alto (which is stigged) has locked every user out. This includes the emergency and admin accounts. I guess, now the only way to get back in is to to in via the ...

Missing ikemgr.log

I wanted to delete the ikemgr.log.old, however, I deleted the ikemgr.logNow no vpn logging is available anymore. I already restarted the management plane. No luck.Does somebody know what to do?

Gerben by L0 Member
  • 3 replies

Resolved! adding more than one UIA agent on firewall?

Hi Techies, I have a small doubt whether I can add more than one UIA server in my firewall in the sense that they should behave kind of active passive . Requirement is something like that I want to secure user id functionality on firewall so that if ...

Any Any Rule

Many times I have seen that engineers used to allow any rule during troubleshooting and forget to remove which creates problem in audit and compliance check, is there any option so that engineers should configure rule with any in source/destination/p...

SumitB by L1 Bithead
  • 2 replies

Controling East-West traffic without NSX

Hello,In a "Supported Deployments on VMware vSphere Hypervisor (ESXi)" section of the documentation (

Resolved! Slow downloads from Non-US sources

Short version: large downloads from Non-US sources are slow. The file I'm attempting to download is the ISO found here from Bacula: I have a sister firewall at another l...

Nathan.S by L3 Networker
  • 3 replies

Resolved! Panorama 8.0 Managing Firewalls on PANOS 7.1

We are looking at upgrading Panorama to V8.0 to give us the ablity of perform individual commits, the firewalls will remain on V7.1 for the time being.Because V8.0 has so many new features what would happen if an admin configures a feature not suppor...

Top Solution Authors
Top Liked Authors