Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 157 Views
  • 0 replies
  • 0 Likes

Resolved! USER ID MAX USERS IN A GROUP???

Hello,

I've configured on PA5060 an Idenfication with AD:

PA5060: 4.1.6    USER ID AGENT : 4.1.4-3

LDAP SERVER 389

I do a group mapping  by group but this group have more than 16000 users.

when I do a show user usersIDS , I can't see all my users. I know

...

alle by L3 Networker
  • 14449 Views
  • 10 replies
  • 0 Likes

Can't install device certificate

Hello,

 

I'm trying to install a device certificate as instructed in the manual. 

I generate OTP using my account, I indeed see my valid serial number, get the OTP. 

Then I copy-paste to the firewall GUI and get the following error: 

 

I'm connected

...

Screenshot 2024-04-17 173742.png
YonatanG by L1 Bithead
  • 745 Views
  • 2 replies
  • 0 Likes

TS agent SSL error

Hello, 

 

I've been trying to add a new TS agent on my firewalls. As there is no redistribution for user-{ip+port} mapping, I want to map the TS agent to 2 FWs. Backend FW is connected correctly, Frontend FW is in error.

I can capture the following betw

...

MMerlier by L1 Bithead
  • 4605 Views
  • 4 replies
  • 0 Likes

Resolved! Edit personal information

I'm trying to update some personal information (my last name), but when i save the configuration, it doesn't actually save.

On the other hand, my last name changed and now its my name (Lucas Lucas).

 

Please help me, i can't find any Customer Service

...

loropeza by L0 Member
  • 957 Views
  • 2 replies
  • 0 Likes

403 forbidden error while importing IDP fiile

Hii,

 

I have been trying to import G suit IDP file in SAML Identity provider on palo alto VM firewall but for infinite time its just showing message "uploading" without showing any error message. when I checked in network tab of inspect element I ca

...

Resolved! PING from Firewall GUI

Hi All,

 

I have a basic doubt.

Isit possible to ping from firewall GUI ?

If not from Panaroma CLI, isit possible to connect firwall ( to test the ping from firewall to host )

 

Reason : To check the network latency from fireawall.

 

Thanks

KM

Resolved! PA-220 to PA-440 Migration Recommended Process

I need to migrate 2 stand alone PA-220s to PA-440s.  The current PA-220s are running PAN-OS 10.2.4-h2.

I would like to know the recommended process for doing this.

Can I backup the configuration and system state and restore it on the PA-440?

Do I use

...

Import TXT or CSV to an Address Group?

I have a TXT file (I could also save it as a .CSV) of about 2000 known bad IP addresses I want to block traffic to/from. Is there a way to import this list into an Address Group? I see an option to download a dynamic list but I would then have to hos

...

j_della9 by L0 Member
  • 7820 Views
  • 4 replies
  • 1 Likes

NAT mapping public to private IP

Hello all,

 

I have been updating our NAT policies within our PA-3220 to specify traffic translation mapping from our public addresses to private addresses. After committing the changes the traffic has only been routing to the catch all NAT rule at t

...

Resolved! Failure to install Apps and Threats

Model PA-3050
Software Version 9.1.16
GlobalProtect Agent 6.1.0
Application Version 8692-7955 (03/30/23)
Threat Version 8692-7955 (03/30/23)
Antivirus Version 4401-4918 (03/26/23)
WildFire Version 757322-760771 (04/06/23)
URL Filtering Version 20230406.2015

...

Kali by L2 Linker
  • 3528 Views
  • 4 replies
  • 1 Likes

IKEv2 IPv6 tunnel with dynamic endpoint from one IP

With IPv4 it is possible to build multiple IPSec tunnels from one interface IP with dynamic/unknown destinations and separate them based on the IKE peer IDs. That configuration is accepted by the firewall.

As for IPv6, as soon as one source interface

...

nikoo by L3 Networker
  • 1968 Views
  • 2 replies
  • 0 Likes
  • 23595 Posts
  • 107 Subscriptions
Top Liked Authors
Labels