This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4113 Views
  • 0 replies
  • 0 Likes

Multiple ISPs to one internal server

We're having trouble getting traffic from multiple ISPs to a single internal server working on anything except the ISP that matches our default route. We need to be able to do this because we are trying to migrate from the ISP networks to the /24 we acquired from ARIN. Due to the nature of the business, we have thousands of devices in the field ...

NAT from Site2Site to virtual subnet

hi,i have a problem with an Site2Site VPN connection. i need an option to get access from external to my internal network but we have the same subnet so i need access to 192.168.1.xxx but from the outside (Tunnel) i will use the ip 192.168.5.xxx how i have to configure this?i hope somebody has an idea for thisthanksStefan

Resolved! User-ID agent tab missing v10

Hi folks- My customer is running v10.0.1. In Setting up User-ID, we cannot locate the "user-id-agent" tab. Nor is it an option in the CLI . I could create a user-id-agent on my v9 lab box, but not on V10… Im guessing a v10 bug ??? I have a case open... any ideas ?

dbrenipc by L3 Networker
  • 15883 Views
  • 1 replies
  • 0 Likes

IPsec VPN PAlo alto Mikrotik Phase 2

Hello!I setup IPsec tunnel between palo alto and mikrotik.I found an example here.I did everything step by step 1-13(see below)I have PAlo alto version 9.1.3-h and Router os ver. 6.43.13. phase 2 doesn’t work. How to befriend these devices? Help me. Config PALO Alto1.Create a new interface and add address (gateway default for tunnel in Virtual ...

melnikov by L1 Bithead
  • 14246 Views
  • 5 replies
  • 0 Likes

Palo alto placement

Hi, cisco campus lan design ( access distribution core )In data center we are using cisco vpc (spine and leaf ) Now I want to place an (acive standby fw ) in data center . I place the Please guide me to do so , Where should I Place the firewallThanks

simsim by L4 Transporter
  • 3196 Views
  • 3 replies
  • 0 Likes

EVE-NG PA booting issue

Hi all, I have a eve-ng laptop that i'm planning to use for practice. I have installed the KVM file and activated it as well as added it to the eve-ng lab. However, when i start the device. I get the error message "No bootable Device". This device is currently configured to use PA8.0.5 in the EVE-NG environment. I have Attached a screenshot of ...

PAN OS vulnerability

I have a Palo Alto (PA-5220) HA pair with software running (SW: 9.0.9-h1, Global-protect version: 5.1.3). I found below vulnerabilities are affecting the current PAN OS. I am planning to upgrade it. Could you please suggest the best recommended software with Global protect version for my firewall. Model: PA-5220Software Version: SW: 9.0.9-h1, g...

GlobalProtect license usage

is there a way to check GP license usage on the firewall? Our firewall license should allow 2000 GP connections but we would like to see how many are used at this time. Thanks in advance.

Access to Web-GUI (on MGMT-Port) via IPSec-Tunnel from external network

Hey everyone, I have the following active-passive-HA-scenario: ethernet1/1: External Interface (vpn termination point)ethernet1/2: Internal InterfaceMGMT: Management-InterfaceHA1: HAHA2: HA For administrative and monitoring purposes I need access from an external network to the WEB-GUI of both firewall-systems. Because of active-passive-HA, just...

Customer Experience Day is a great day to celebrate YOU!

October 6th is Customer Experience (CX) Day, so the LIVEcommunity wants to celebrate you! Tell us: Who has helped you along your customer journey in the LIVEcommunity or at Palo Alto Networks? Was it a community member? OR What does customer experience day mean to you? Celebrating Customer Experience (CX Day) on LIVEcommunity Check d...

LIVEcommunity Celeberating CX Day.png
jennaqualls by Community Team Member
  • 17890 Views
  • 17 replies
  • 7 Likes

Can't access website from browser on home wifi

My company started to use global protect, but it gives me an issue. I can access any website normally in the office, however, at my home, I can only access certain websites such as Facebook or Apple, other websites such as Google and the company's internal server can't be accessed, browser (chrome) will return ERR_TIMED_OUT. Other browsers are a...

eljirg by L1 Bithead
  • 10775 Views
  • 7 replies
  • 0 Likes

Gemalto with Paloalto

Dears, I want to configure two-factor authentication for the device administrator.Example:- If any admin login in the firewall. the first authentication should be Active directory and the second authentication should be Gemalto. If it is possible please share the configuration documents.

Resolved! Data center firewall design?

Hi All,I have couple question in mind when I’m think about implementation PAN firewalls in Data center design. In reviewing design guide “Designing Networks with Palo Alto Networks Firewalls”, mostly where described perimeter firewall with upstream untrusted networks, exceptionally where we got hierarchical design with trunks between aggregation...

Tician by L3 Networker
  • 14294 Views
  • 11 replies
  • 0 Likes

Resolved! Static routing question

I'm managing Pan's on a daily basis, just basic stuff: creating policies, monitoring etc. but routing is something I never had to do before, so I hope I can get a little help from you out here. It would be really appreciated !We are in the process of getting our telephone system to a cloud-based one.Itried the softphone and it connects when I'm ...

Slager by L0 Member
  • 2682 Views
  • 1 replies
  • 0 Likes
  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks