This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 195 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 878 Views
  • 0 replies
  • 0 Likes

show user group list - Shows custom group only

Under group mappings of LDAP i have so many AD groups.

 

But when i run below command 

 

show user group list


Total: 1
1* : Custom Group

 

IT does not show me any group names from AD?

what is the reason for that?

 

Also what is difference between Custom group a

...

MP18 by Cyber Elite
  • 9948 Views
  • 30 replies
  • 0 Likes

Resolved! Global Protect issue with BGP routing configuration

Hi All,

 

I have configured Global Protect and I can successfully connect. My Palo Altos are configured to peer and route via BGP which is working without issue.

 

My problem is I cannot reach anything once I am connected. I need at access two address ra

...

a.jones by L3 Networker
  • 3466 Views
  • 2 replies
  • 0 Likes

Resolved! Basic GP routing/NAT/policy

The Gateway/Portal of my setup works fine.

It's routing I think that's not working.

 

I just want a client over GP to hit local networks off the PANOS. 

IP Pool and access routes that been defined, work just fine .. I can see client has been bestowed the

...

mpgioia by L1 Bithead
  • 6525 Views
  • 4 replies
  • 0 Likes

Resolved! Split tunnel greyed out

Hello,

 

We are using PANOS 8.1.7 and GP 4.1.8.

 

We have multi Vsys and one of our VSYS administrator account cannot access GP protect agent split tunnel setup.

 

It is greyed out.


Is this an account limit or something wrong?

 

Screenshot.jpg

threshold values for SNMP Monitoring PA-5250

Hi,

How much RAM does a PA-5250 have? And which threshold value should be defined for alarming in SNMP Monitoring?

And what other oid make sense to monitor and which hreshold value?

 

e.g. count of Sessions: Data Sheet 8.000.000, but what would be a appr

...

regioiT by L0 Member
  • 2880 Views
  • 2 replies
  • 0 Likes

Resolved! TS Agent no port mapping when using windows net use

Hey Guys

We have noticed a weird behaviour:

When I do a telnet to IP 1.1.1.1 Port 445 on our Terminal Server with the TS Agent installed, the associated Port Range will be used as expected and the source user-id will be mapped.

But when we do a net use

...

GlobalProtect Windows client - command line interface?

We're using the GlobalProtect Windows client application to connect to a customer’s VPN.

 

We’d like to automate this process, as right now our  only way to connect is to click on the tray icon ‘Connect’ option.

 

Is it posible to automate (e.g. via comm

...

Resolved! VPN IPSec gcm or cbc cypher types

When configuring VPN to a 3rd party vendor and you are given the required settings for IPsec profile as sha1 or sha256 only, however on the Palo Alto firewall we have the option to use cbc or gcm, e.g. aes-256-cbc and aes-256-gcm.

In the past I used t

...

BatD by L4 Transporter
  • 15831 Views
  • 6 replies
  • 0 Likes

DNS proxy rule

I have a DMZ zone for guest wireless users on Palo Alto. They use our internal server 192.168.10.10 for DNS. I am trying to configure the firewall to force them use 8.8.8.8 for a specific domain eg:*.amazon.com
Please let me know if configuring a DNS

...

  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks