This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1706 Views
  • 0 replies
  • 0 Likes

Resolved! IPv6 IPsec Site -to-Site VPN Phase-I issue

Hi ,

If anyone there who have a solution for this IPv6 IPsec Site -to-Site VPN Phase-I issue, I checked all the Phase-I and II parameters and took help from PAN TAC engineer as well. they don't have an answer for this. I am getting an this error. Your

...

Resolved! GlobalProtect 5.0 for iOS 12 and User Certificates

I have several customers (and my homelab) that leverage user certificates issued from Active Directory Certificate Authorities as a second authentication factor.  Since upgrading to the new 5.0 client for iOS, the client errors out on connection to t

...

Resolved! SIP ALG

I just want to make sure I'm thinking through the use of SIP inspection. If I have the sip application configured on a security rule, then the ALG will be in affect.

If I have defined port-based services in a security rule with no sip application defi

...

Interface flap email alert on Palo Alto 8.0

Hi Folks,

 

I want to configure email alert for interface flapt i.e ( subtype eq port ).

 

On email server profile under custom log format if I add $subtype eq port , would it be sufficient to trigger alert ?

 

 

Resolved! SMTP Authentication

Hi guys,

 

According to this document, at the bottom, it states that SMTP authentication is currently not supported. This was in 2014, so does anyone know if this is still not supported?

 

https://live.paloaltonetworks.com/t5/Learning-Articles/How-to

...

split tunnel issue

I have set up a GlobalProtect gateway in Panorama (software version 9.0.0.0) and configured it for split tunnel, however the configuration is not applying to the firewall (PA850 - software version 8.1.6)

Palo Alto Home Server Network

I currently have a family property that consists of 3 adjoining properties and structures, we retain a private home server network and are looking to protect it utilizing Palo Alto Virtual Appliance, but are being told in order to do so we must be a

...

boernerj by L1 Bithead
  • 2972 Views
  • 5 replies
  • 0 Likes

Resolved! Security Policy Search Results

We have a 3020 firewall with version 8.0.10 and need to allow a new server access to resources in other zones. An existing server, 10.100.100.10 already has this access, so I need to mimic the access of this server.

 

In Objects\Addresses there is an e

...

Analyzing Email Traffic on Palo Alto

We have our in house mail server which is behind the Palo Alto, all incoming and outgoing email traffic go through it. Can we analyze the email traffic and get following information?

 

Sender

Recipient 

Attachment File name

Attachment File Type

Email Subje

...

HA Data Link Ethernet vs IP

Hi,

 

When I configure HA for data link I use Ethernet when devices are directly connected to each other, but sometimes in the field I see people using IP for transport but the devices are directly connected to each other. Why are they doing this? Ther

...

junior_r by L3 Networker
  • 8015 Views
  • 6 replies
  • 0 Likes

Customer Experience (CX) Day on LIVEcommunity

October 1st is Customer Experience (CX) Day, and Palo Alto Networks is celebrating you, our customer! Join us in this celebration.

 

Tells us:  

- What great customer experience means to you. 

OR

- About a LIVEcommunity member or Palo Alto Networks e

...

CX-Day 2019 LIVEcommunity (1).png
reaper by Cyber Elite
  • 4121 Views
  • 3 replies
  • 3 Likes

VPN problem

Hi
i have a problem. i have configured vpn ikev2 ipsec. When test vpn with CLI command( test vpn ipsec tunnel [name]) vpn gets up. But when other side try to connect, vpn do not get up.

Also when i check system logs this logs appears:
'IKE phase-1 negot

...

URAN_725 by L1 Bithead
  • 4134 Views
  • 3 replies
  • 0 Likes
  • 24218 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks