This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4253 Views
  • 0 replies
  • 0 Likes

IPsec VPN tunnel cant ping eachother

Hi there, I cant figure it out why tunnel interface cant ping each other even site to site VPN is up and running fine. Is there anything I am missing here?? I have setup multiple site to site VPN with all other vendor and its just works fine. This is to Palo to Palo.i did test vpn ike-sa and ipsec-sa multiple time but still no luck Thanks in adv...

Email server profile with custom port

We have a client who wants to schedule PDF reports to an email server using a custom port. The firewall will let him enter the port in the email server profile, but when trying to send a test email of the report, it fails immediately and tcpdump shows that there are no packets sent. When the custom port is removed, the firewall tries to send a t...

GlobalProtect v5.1.1 remembering wifi network, not allowing new wifi

Have rolled out GlobalProtect v5.1.1 and successfully connected from one remote location on the wifi network at that location.When I move a new remote location with a different wifi, the laptop is connected to wifi I can browse the Internet, but GlobalProtect will not connect and says that it cant find xxxxxxx network. xxxxxx represents the na...

What is the maximum number of Domain controller allowed to bind with PaloAlto Firewall

Hi Folks, I have this customer, who doesnt have centralsed AD and has 40 domain controller sitting across the network. to provide the zscaler solution, customer wants user-based traffic forwarding, but unfortunately he has pretty much close to 40 domain controller he says. which i came to know after adding his two domain controllers from hi...

CVE-2020-8597 is it applicable for Palo alto ?

We have received a Critical Security Advisory related to Buffer Overflow Vulnerability in Point-to-Point Protocol Daemon (pppd). is applicable to our PaloAlto and Panorama Firewall devices.?Risk Advisory No CVE-2020-8597Advisory Name Buffer Overflow Vulnerability in Point-to-Point Protocol Daemon (pppd)Severity CriticalAction Required ImmediateS...

CyberEye by L3 Networker
  • 2871 Views
  • 1 replies
  • 0 Likes

Queries related to SSL VPN

Hello Team, The below things are need to clarify,,, How to know calculate SSL VPN interfaces bandwidthIndividual VPN user bandwidth consumptionWhich VPN interface the highest bandwidth user is connected toAll active connected VPN usersTime duration of the connected VPN userif we enabled Split tunnel, SSL VPN Bandwidth should be increase??Regards...

Compare Palo to Panorama config before revert

I'm showing Panorama says that all of my firewalls are in sync in the Panorama>Managed Devices>Summary screen. However, if I change the Context to a firewall that has been out of sync in the past, I see that there is an Override cog next to the company Network>Virtual Router>CoName. I saved a named configuration snapshot on the local...

GlobalProtect VPN version 5.0.7-2: Error( 53): Driver is not installed, reinstall it now!

On a Windows 10 laptop, we install the GlobalProtect VPN client and everything seems to run to completion. However, when we try to use the VPN client from the tray, it acts like it's greyed out and is non-responsive. Looking at the PanGPS.log, the only interesting looking message is the one in the Subject line above. We've gone through severa...

RandlHam by L0 Member
  • 11745 Views
  • 2 replies
  • 0 Likes

How the authentication will happen for GP if no Group Name and Group Password haven't configured

Hi Team, I just want to know on how the authentication will happen and IPSec connection will be established if we haven't configured X-Auth "Group Name" and "Group Password" under GP Gateway settings. As i see that it will use the Certificate provided by the 3rd party VPN Client. So but i am bit confused on how to understand this scenario. Can y...

SahulH by L3 Networker
  • 2435 Views
  • 1 replies
  • 0 Likes

Resolved! OSX update and Decryption

I've installed our Root CA cert in the "System" keychain, and have it marked as trusted. I can successfully decrypt web traffic from a MAC running Mojave. No problems there. The problem comes in when I try updating the OSX or even check for updates from the CLI. When I run "softwareupdate -l" in terminal, In the logs on the firewall it ap...

Sec101 by L4 Transporter
  • 9694 Views
  • 8 replies
  • 0 Likes

Resolved! Issue with User-ID mapping

Currently in User-ID, one ip address is associated with three usernames.Two of which are the hostnames of the computer and not the user so when the staff tries to access something, they are getting blocked. Do you have any suggestion to fix this? Clearly AD is pulling this information. Do I need to adjust something on Active Directory to fix this?

(Module: device) Commit failed

OperationCommit All StatusCompleted ResultFailed Details(Module: device)Commit failed Doesn't give any more information, how do i know what it is failing on.Pushing policy from panorama 9.0.5 to firewall on 8.1.8-h5

raji_toor by L4 Transporter
  • 6779 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect "You are not authorized to connect to GlobalProtect Portal" Error

Happy Thanksgiving all, I just updated from 8.0.12 to 8.1.4 on 11/20. I was able to connect to GlobalProtect from the time I upgraded until about 6 hours later. I now get the error "You are not authorized to connect to GlobalProtect Portal". Initially, I thought this may be licensing, but it is not system wide. It currently only affects myse...

  • 24362 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks