This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4224 Views
  • 0 replies
  • 0 Likes

Connection Issues between servers

I'm very new to PAN firewalls and are still learning as I go along, they've only been in a month or so and the only rule is currently set any any from the trust to untrust zones and vice versa. We've got a couple of issues around some connections that traverse our 5250's (LAN to WAN and vice versa) but from the 5250's perspective its not seeing ...

JonHill by L1 Bithead
  • 3388 Views
  • 2 replies
  • 0 Likes

Resolved! Need response on some VAPT points

There are some VAPT points of one of our customer which is attached with the email.My response on these vulnerability point are as follow:-1) SSL/TLS Server supports TLSv1.0 :-We can enable TLSv1.2 in SSL/TLS profile under Device -SSL/TLS profile and use these profile wherever required.2) Birthday attacks against TLS ciphers with 64bit block siz...

PA VM-300 Hyper-V as a Gateway of Network

Hi Team, We have requirement to build a permiter gateway firewall under Hyper-V using PA-VM-300. In practical world this is realy possible to do so, force all traffic (in/out) pass through using Hyper-PA-VM. If it is there help with the documentation and suggestion like pre-requistes. Please help. Thanks ,animesh

Enable palo alto preempt or not?

Hi. I was just wondering what most of you people do regarding preempt option for A/P clusters. (and perhaps also some pointers regarding the different timers you can set, etc ) Main reasonis that the discussion to use preempt or not to use preempt comes up once and a while with customers and with coworkers. so what are some of you guys' findings...

Error Message for AE1 Aggregate Group

Hello, We are getting below messages on and off for our HA pair.eth 1/5 and 1/6 are part of the ae1 aggregate group nego-fail,ethernet1/6,0,0,general,critical,"LACP interface ethernet1/6 moved out of AE-group ae1. Selection state Selected",450025,0x0,0,0,0,0,,FW-1lacp-up,ethernet1/6,0,0,general,critical,"LACP interface ethernet1/6 moved into AE-...

How to Create a Report on Template settings?

I have some templates and template stacks that I've inherited. I would like to review the settings to understand them better, what's getting set where. Is there a way to export a report on those settings rather than clicking each of the tabs on each of the templates to see what's there?

Resolved! GlobalProtect license in HA

We have got the 220's and i installed the licenses before i configured them in HA. License that we got says GlobalProtect subscription for device in an HA pair. But the GP license doesn' show up in the passive device. I have yet to do any further configuration but tried failing the device to passive to see if it changes anything, nothing, I f i ...

raji_toor by L4 Transporter
  • 3169 Views
  • 1 replies
  • 0 Likes

GoToMeeting audio(Microphone) not working

Hello Community, I have some questions regarding GoToMeeting and Security Policies. The System is a PA-3020, which is running on the software version 8.1.2. For GoToMeeting to work properly, the application stun has to be allowed. I have created a security policy in which I have allowed said stun. Under the monitor tab, I now see that stun is al...

Julian_V by L0 Member
  • 5857 Views
  • 3 replies
  • 0 Likes

Resolved! When was "firebase-cloud-messaging" added?

I found that the google-base join time is displayed here and here. In the list, the firebase cloud message is not included.Recently, the rule setting only uses google-base, which causes FCM to not work properly, so I would like to ask "firebase-cloud-messaging" is When did join?Why not let it be in "google-base"? It is a service provided by google.

螢幕快照 2019-07-04 下午4.46.29.png
螢幕快照 2019-07-04 上午11.59.02.png
螢幕快照 2019-07-04 上午11.59.38.png

Slow accessing file shares using Global Protect VPN client

Has anyone experienced an issue where accessing file shares from a Windows 2008 R2 is really slow, often showing the hour glass taking up several minutes or cancel and retry opening file shares multiple times again before it opens up, after establishng a VPN session using Global Protect VPN client v4.1.9-7 (same issue also happened with GP clien...

hcao by L1 Bithead
  • 19506 Views
  • 12 replies
  • 0 Likes

Dynamic Routing offsite

I have been using small(ish) static routing tables until now. I have 2 PA-3020 in HA mode that control the internet and new offsite datacenter. At a second location 15 miles away, I will have a backup link to that datacenter. A third 3020 is in place to handle the connection. My plan is to install OSPF on the juniper gear controlling the int...

PA-Route.png

asymmetric routing

Hi , If there is asymmetric routing how the firewall process the packet if it is in routed mode . How it process the packet if it is in vwire mode and there is asymmetric routing ? Thanks

simsim by L4 Transporter
  • 7853 Views
  • 3 replies
  • 0 Likes

Global Protect Pre-Log on set up issues

Hi all,We are attempting to test global protect with pre-log on in our network and have a number of issues and I was wondering if we might be setting it up incorrectly.The type of set up we require is with windows machines that log on to global protect when they start up prior to users logging on.Now there is nothing in the offical admin guide w...

Source User in Monitoring tab same time not viewed

This my issue !!! During the snapshot same time the source user is not capture by PA and for this issue the internet for specific user is disconnected after 5 min the connection start again and the source user is showing any idea about this problem Many Thanks for all

live.jpg
MFayez by L2 Linker
  • 3669 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks