This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 877 Views
  • 0 replies
  • 0 Likes

Palo Alto Core Firewall HA Active/Active

I have found some issues in running HA Actvice/Active as it relates to config sync. It appears when a red dot on the firewall and an Admin connects their default reaction is sync config. So I noticed that something that replicated to the active-secon

...

One Internet line Multiple intefaces

Hi Everyone
In my sinaro i have one internet line 10 MB and i have 5 zones configured in PA my question . and each zone for different purpose for example (IP SEC - Intenet -Email)

 

 

 

1-  how i can provide the internet to multiple zones with a multiple

...

MFayez by L2 Linker
  • 8322 Views
  • 14 replies
  • 0 Likes

Quality of tech support in recent months

Is it just me? I noticed that it became almost impossible to get a support person on the phone without being on hold for hours...

When opening tickets online, it would sometimes take days to schedule remote session and some engineers just don't have e

...

PavloJCP by L1 Bithead
  • 7669 Views
  • 13 replies
  • 1 Likes

Resolved! Using External DNS server

 

We need to isolate the vendor traffic and we do not want this traffic to talk to our internal DNS server for DNS queries.

Is it safe to use google dns server and then apply dns sinkhole?

We can use the security policies app based and then apply app de

...

MP18 by Cyber Elite
  • 3314 Views
  • 2 replies
  • 0 Likes

Resolved! DNS security license and traffic flow

 

We have User where they access the Internet and traffic flow via say Corp PA

We have DNS server which is internal and the DNS traffic to Internet flows via say DMZ PA.

 

On PAN OS 9.0 if i get DNS license on Which PA i should get for?

As my understandin

...

MP18 by Cyber Elite
  • 2551 Views
  • 2 replies
  • 0 Likes

IPSec VPN Tunnel Throughput Monitoring

Is there a way within the palo alto firewalls to look at the active IPSec VPN tunnel throughput? I have a 3050 firewall with a handful of IPSec tunnels configured (individual and LSPVN tunnels) and I'm wondering how you would know if you were coming

...

BGP peering on loopbacks, struggle is real

I am really struggling with this. I have been at it for hours. I have two Palo Altos in standalone mode both forwarding traffic.I have connected to each palo cisco 9500s and Cisco 9300s. These are not fully meshed. So i know that I am going to need R

...

Resolved! Default Action for Revoked Certificates via OCSP and CRL

Hi All,

When you enable OCSP and CRL revocation checking on the firewall, if a certificate is revoked the default behavior is to block the connection.  Is there any way to change that behavior so that maybe the revoked log is written in the system log

...

dan731028 by L3 Networker
  • 4050 Views
  • 2 replies
  • 0 Likes

Global Protect Agent GW Login Lifetime

We are having an issue where our internal GP agent is authenticating to both of our internal gateways normally, but after the period set for "Login Lifetime" - the firewall is clearing the IP to username mapping, even though the GP agent still shows

...

Sec101 by L4 Transporter
  • 13607 Views
  • 2 replies
  • 0 Likes

how to distribute one internet line to multiple services

in my current scenario, I have 4 interfaces configured with different Public IP address and each interface linked to the different router and each interface have different services (Internet Email1, Email2, VPN)

 

 

Our Plan to get a new line from a new

...

MFayez by L2 Linker
  • 5395 Views
  • 11 replies
  • 0 Likes

Resolved! Recommended PanOS in 8.0.x

HI, we are hitting a critical bug in our PA5020 about memory leak. Current version is 8.0.8. So we are planning to upgrade. What PanOS version do you recommend us? more "stable"?

BigPalo by L4 Transporter
  • 4820 Views
  • 4 replies
  • 0 Likes

SMTP Inbound Decryption

I am trying to setup inbound decryption for SMTP (TLS) using the default Decryption Profile.

What destination IP address do I use in the Decryption Policy: public pre-NAT or private post-NAT?

 

Regards,

Han.

 

Han.Valk by L2 Linker
  • 2972 Views
  • 2 replies
  • 0 Likes
  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks