This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4121 Views
  • 0 replies
  • 0 Likes

Resolved! SQL Cluster Through PA Firewall

We have Palo Alto firewalls with version 8.0 and need to allow SQL Cluster synchronization from one zone to another. The servers are Windows 2016 with MS SQL 2016. I'm not a SQL expert but tasked with a firewall rule between these clusters. I appreciate any advice or help. Jeff

URL filtering behavior when used in conjunction with web proxy

Hello guys, I'll make it as short as possible. The summary of our system is below.Client PCs use must use an internal web proxy ("Proxy" in the diagram) when they want to access the internet.The internal web proxy then forwards the proxy connection to an external proxy. ("WSS" in the diagram)Palo Alto's ("PA" in the diagram) URL filtering is use...

Firewall receiving a HTTP 401 error when trying to access the Minemeld server

Hi All, I've configured an external dynamic access list with the relevant account username/password to reach our minemeld server. When I test the connection however using 'test source url' in the external dynamic list configuration, this fails with a URL access error. On the minemeld server log: 127.0.0.1 - - [26/Sep/2019:14:25:45 +0100]...

6.1.3 update issue: Threat database handler failed

Hey all-I tried updating a test box to 6.1.3 and encountered the error in the title. Per other threads, I tried manually downloading the latest content version and installing but it resulted in an error during install. Has anyone else encountered this with 6.1.3 yet?

SDorsey by L4 Transporter
  • 6178 Views
  • 3 replies
  • 0 Likes

Panorama pushed zone not applied to subinterface

Its a new firewall, with 2 interfaces in AE, zone configured and pushed through panorama template.When configuring L3 sub-interface for this AE interface, i can configure ip, vr but the security zone would not get applied to it.Both firewall and panorama at 8.1.8

raji_toor by L4 Transporter
  • 12601 Views
  • 6 replies
  • 1 Likes

Mac taking very long time connecting to global protect gateway and sometime they gets dropped

Mac taking very long time connecting to global protect gateway. We are using the clinet version 4.1.11-9.Pre-log on always on VPN. It tries and tries until it connects. Sometimes it drops the VPN and tries to reconnect. All I see suspicious from the logs are below. Can anyone please assist with this ?P 98-T7431 Sep 18 10:11:16:160862 Info ( ...

Nvempati by L1 Bithead
  • 6586 Views
  • 4 replies
  • 0 Likes

show objects registered-ip all

What does the below mean:received from user-id agent #: persistent I'm finding that some addresses are registered to a tag that I don't believe I've created, - a "Palo-URL-and not entirely sure where it came from.... however I'm reading that a restart may be required for a clearing of dynamic addresses? https://knowledgebase.paloaltonetwor...

Sec101 by L4 Transporter
  • 3459 Views
  • 2 replies
  • 0 Likes

Group mapping settings not listing AD groups in GUI

Hi, I am trying to configure user-id based authentication in Palo Alto 5220 (Pan OS 9.0.2). I have integrated Palo Alto with AD using LDAP profile. I am not able to add the AD groups in the "Group Include" list as they are not being listed in the GUI. I am using panorama to manage the firewall. However, i am able to view the groups in CLI of th...

MGRashmi by L2 Linker
  • 10415 Views
  • 4 replies
  • 1 Likes

Resolved! SFP Compatibility

Hi everyone, Good day. I have a query regarding the compatibility between a PA-3020 management port (ethernet) connected through an ethernet cable to a Cisco switch with SFP port. A transceiver is in place at the switch end for plugging the ethernet cable. Currently when it is connected not even the link LEDs are glowing. The specifications for ...

Resolved! Sudden issues with address objects in policy rules- behaves as if 0.0.0.0/0 is set

Since about 4 days I am experiencing a critical problem in relation to policy rules with address objects and suspect an update to address/region objects has caused this mess as I am experiencing this issue with: - manually added address objects- predefined country regions- dynamic address groups (based on tags- even if the address group is empty...

Bildschirmfoto 2019-09-24 um 10.51.52.png
Bildschirmfoto 2019-09-24 um 10.52.21.png
pan219 by L2 Linker
  • 7408 Views
  • 3 replies
  • 0 Likes

Resolved! Different Response Page for https and RDP traffic

I have configured MFA with Radius.It is for https and RDP trafficWhen we access http site we get response page to put Radius Credentialsbut when we do RDP connection to server we get different response pageNeed to know how can i make same response page for both http and RDP traffic?Also response page ask for Password how can i change it to show ...

MP18 by Cyber Elite
  • 3769 Views
  • 2 replies
  • 0 Likes

Monitoring Palo Firewalls using System Center Operations Manager

Hey Guys, before I get boo'ed and suggestion of more featured products to monitor palo devices (pano, something or rather dominated googles results) but...our main objective with monitoring our environment, is single pane for monitoring/alerting etc, and SCOM has fit the bill quite nicely. The past 6-12months we've looked at, and started implem...

jondavis by L0 Member
  • 4567 Views
  • 2 replies
  • 0 Likes

Best Practise for Scheduling Dynamic Updates

We want to schedule dyanmic updates , we dont have test environment. we can schedule updates on satellite offices then after 2 days to be installed on hub sites. prb is if new application traffic hits it will be denied by hub as that application would be unknow for hub ? Any recommendation on this scenario.

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks