General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 417 Views
  • 0 replies
  • 2 Likes

Resolved! Vwire connection between edge and distribution switch

 

We have stack of 2 edge switch and stack of 2 distribution switches.

We have linkagg containing 2 ports running between them.

IT is layer 2 connection only between edge and distro.

Also we have MAnagement vlan on switch so that users can access it remo

...

vwire.png
MP18 by Cyber Elite
  • 3302 Views
  • 4 replies
  • 0 Likes

Resolved! "Wrong" IP netmask object definition

Hi,

I am a new bee in PA. Can any answer very basic question.

I have seen  IP Netmask object defined with non-zero host portion and mask smaller then /32 in some firewall configurations..

Like this: 192.168.1.1/24 .

 

How does this work. Is that host obje

...

mikesr by L0 Member
  • 3601 Views
  • 3 replies
  • 0 Likes

Https traffic to http

Hi Guys,

 

I have a webserver hosted for public access using http. Now I want to know is it possible to NAT traffic entering to palo alto as https from outside to http as inside.

 

So user will try to connect server using public IP on port 443 their port

...

User-ID in multiple vsys failing for vsys2

Both vsys1 and vsys2 are using same agentless settings and are accessing same DC servers. While vsys1 shows as connected vsys2 shows nothing under status and system logs show 'connect-server-monitor-failure'. I have rechecked password in both vsys bu

...

raji_toor by L4 Transporter
  • 2688 Views
  • 1 replies
  • 0 Likes

Cisco Policy Based VPN - ProxyID Query

Hi everyone,

 

I am receiving the below error on a Palo to Cisco policy-based VPN.

 

'IKE phase-2 negotiation failed when processing proxy ID. cannot find matching phase-2 tunnel for received proxy ID. received local id: 10.45.33.253/32 type IPv4_address

...

baz00r by L0 Member
  • 2379 Views
  • 2 replies
  • 0 Likes

Resolved! Force Template Values

Hi

 

If someone overrides a setting locally on firewall, can this be further overidden by Panorama using force template values?

 

... and is that instance what happens to the green and orange cogs?

 

Thank you

nawaza by L2 Linker
  • 7599 Views
  • 2 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels