This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 2857 Views
  • 0 replies
  • 0 Likes

Resolved! IPSec VPN restarts very often

Hallo,

I have defined a IPSec VPN connection with following params:

ike: 3des/sha1/dh5 Lifetime: 8 hours

ipsec: ESP/3des/sha1/dh5 Lifetime: 30 minutes (life size not set, shows 0MB)

ike gateway: main mode, DP enabled

The connection is established but in s

...

Access Denied on doc links within Live Community

Maybe it's because I'm new here. BUT, every doc link I click on via a post in the Live Community gives me an 'Access Denied. You do not have sufficient privileges for this resource or its parent to perform this action. Click your browser's Back butto

...

DCas by L0 Member
  • 3803 Views
  • 2 replies
  • 0 Likes

Detect ipsec vpn tunnel down with remote palo alto peer

 

 PA5020/PAN-OS 7.1.10

 

 I am trying to develop a NAGIOS check to get an alert , when a vpn tunnel between PA's at different locations

is down. So far I have been looking at the ifup-status of the corresponding tunnel interface at the local firewall. I

...

Unable to connect to pool.ntp.org

Hi

I have a problem with the NTP sync. When i make a "show ntp"

 

NTP state:
NTP not synched, using local clock
NTP server: asia.pool.ntp.org
status: rejected
reachable: no
authentication-type: none
NTP server: pool.ntp.org
status: rejected
reachable: no
authent

...

shared folder in clientless VPN

Dears,

 

Is it possible to configure the shared folder in clientless VPN?

Example:- I have one file server and i want to give access to users via clientless VPN. please share any documents for configuration.

Resolved! Active Active BGP AS Number

Have a Active/Active spit data center solution and question has been brought up if it is possible to use different AS numbers on each of the Palo's. My thinking is why have Active/Active, just use each Palo as a separate individual firewall at each D

...

Resolved! SSL Decrypt does NOT work with TLS 1.1 or TLS 1.2

Hello,

I'm running a cluster of PA (4.0.8) with SSL Decryption configured.

SSL Decryption is not able to decrypt SSL traffic if the HTTPS session is using TLS 1.1 or TLS 1.2.

Test with www.gmail.com   

Chrome : OK (see gmail application in the traffic l

...

licenselu by L4 Transporter
  • 20050 Views
  • 21 replies
  • 0 Likes

Palo Alto PA-3020 Won't Boot

I have a Palo Alto PA-3020 that I got from work a few months back, it was pulled in working condition a few weeks ago, but when I power the unit on the power LED lights up and the fans spin, but no other lights are on. I tried connecting to the unit

...

Resolved! SSL Decryption and Security profiles

Hi 

 

I have a question . Currently PA 3020 cluster  we don't have ssl decryption enabled . We plan to do it in March

 

However , if we enable all other security features like AV,Antispyware File blocking , Vulnerabilty Protection , Wildfire  etc , it wo

...

add new local log collector in collector group

We are using standalone M-200 for 5 locations firewall and created collector group with single local log collector of M200.

 

We are deploying our new M-200 at another location and it will be in HA with our existing M-200.

This new M-200 will be Active-

...

Deepak_K by L3 Networker
  • 1775 Views
  • 1 replies
  • 0 Likes

Layer 2 sub interface with vlan is not working

Hi all,

 

I am trying to configure palto interface in layer 2 mode as trunk and Vlan interface as SVI.

 

Interface             interface type             IP address              Tag                Vlan         Sucurity zone

ethernet 1/10      layer2     

...

  • 24283 Posts
  • 120 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks