General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PA200 Android IKEv2/IPSEC PSK

Hi everyone,

I received an old Palo Alto PA200 firewall from a friend who works in networking, and I decided to set it up in my home lab to explore its interface and features. If I like how it performs, especially the monitoring capabilities, I might

...

Kublach by L0 Member
  • 614 Views
  • 1 replies
  • 0 Likes

Resolved! How to view administrative distance?

Hi everyone,

 

How would I see administrative distance of the routes in the routing table?

they seem to not be visible in the gui (more runtime stats) or via cli (show routing routes).

is there a special command or special area via gui I can see this

...

VK9H13 by L1 Bithead
  • 1174 Views
  • 5 replies
  • 0 Likes

Resolved! Move firewall to new Panorama

Hi All,


We currently have 2 Panoramas (virtual) managing different firewalls..  We'd like to move all firewalls to 1 pano, so we can retire the other one.   What's the best/safest way to accomplish that?  Is there a way to avoid having duplicate obje

...

Resolved! Decrypt Gmail messages

Hello All,

 

Newby question here, is it possible to decrypt Gmail messages and actually see what a client sent via gmail? Some times there are investigations where we need to find out if an email was sent out from someone internally. We only receive

...

palmanza by L0 Member
  • 1046 Views
  • 1 replies
  • 0 Likes

Resolved! Query for routing table

Hello, everyone.

One query.

In Palo Alto Firewalls, what is the correct command in the CLI, to "validate" if I have or don't have a route, to reach a particular destination?

The correct command is "show routing route" or "show routing fib" ???

What i

...

Matlu_NN by L2 Linker
  • 5624 Views
  • 16 replies
  • 0 Likes

PAN OS 11 and DHCPv6 with Prefix Delegation

I wanted to make sure I had the settings correct for configuring DHCPv6 on my WAN interface for Starlink. I can confirm that I did get an allocation of IPv6 addressing with a /56 prefix and was successfully able to get an IPv6 address assigned to my

...

ChazKlinkbeil_0-1705503939918.png

Resolved! Reports not working multi-vsys PAN-OS 11.0.2

Hi,

 

There's a multi-vsys PA-460 with 10.0.2 and it has been noticed that since upgrade specific report is not generating - it is blank when received in e-mail daily. To be more specific, message:

There is no DAILY-SUMMARY-REPORT summary report on T

...

nikoo by L3 Networker
  • 714 Views
  • 2 replies
  • 0 Likes

Dual ISP Ipsec/BGP tunnels to Azure

Has anyone created ISP failover for tunnels to Azure gateway? 

 

We have PA440 devices with two ISPs configured. Local networks are switched with path monitoring if ISP1 goes down.

We want the same for the IPSec tunnel to Azure.

 

From Azure document

...

mdsgn1 by L1 Bithead
  • 629 Views
  • 3 replies
  • 0 Likes

Resolved! PAN-OS Certificate Expiration on Dec 31 2023

Hello, we have this error message when launching palo alto:

 

"Urgent Action required: PAN-OS Certificate Expiration on Dec 31 2023. For details, refer to the following Customer Advisory:

https://live.paloaltonetworks.com/t5/customer-advisories/emerg

...

could not unlock user

Hello,

I'm sure this has been asked before, but I can't find an answer.  Get a message of "could not unlock user" via gui.  Is there any way to unlock an individual user via CLI?  I'm on PAN 10.2.6

Thanks

Rich

rcraxton by L1 Bithead
  • 546 Views
  • 2 replies
  • 0 Likes
  • 24164 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels