This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 628 Views
  • 0 replies
  • 0 Likes

Static route path monitoring

Hi All,

 

We have PA-820 models with Active-Passive configuration. 

 

I have configured the static route path monitoring based on this guideline - https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/networking/static-routes/static-route-removal-bas

...

ChiragP by L2 Linker
  • 5414 Views
  • 2 replies
  • 0 Likes

Problem with SIP traffic

Hello there!

 

I have a problem with SIP traffic for VoIP. It is a HA cluster that has experienced that problem with the SIP traffic for phone calls. For a number of hours, SIP calls could not be made or received. Mismatches with the config between act

...

URL Filtering Clarification

I have been wrestling with many people regarding URL filtering specified within the "Service/URL Category" tab of a security rule.  First off I don't have a URL license.  Let me continue... I have created a security rule that allows traffic to a URL

...

ScottF by L1 Bithead
  • 2839 Views
  • 1 replies
  • 0 Likes

Faulty Device - Config Wipeout

Hi Experts,

 

We want to remove the configuration from the failure firewall before shipping faulty device back to PA. Since firewall isn’t booting  up, we’d not be able to do “Factory Reset” to wipe out old config.

 

We need to delete old configs. Can so

...

is Cluster possible?

Hi all,

 

is quick question on above statement. is it possible to configure clusters with Palo Alto?

I do not mean Active/Standby or Active/Active

 

I was not able to find any documentation on this. if this is possible, could someone point me in this dire

...

New Comer

Hi Im new to working with Palo Alto, and I im process of configuring a new Pa-820, I wanted a lttle infomation and help. 

 

1) Do you have to create a return rule if you want the return traffic back from the destination back to your source address. Or

...

kev91234 by L1 Bithead
  • 4652 Views
  • 6 replies
  • 0 Likes

Cannot add SNMP

Hi,

 

I am trying to add Palo Alto firewalls to our monitoring system but one of our PA-220 is failing to be added.   

We use Panorama and PAN-OS 8.1.3.

 

 

Any idea how to fix this issue?

SNMP.jpg

EDL HTTP response code said error

Hi,

 

I am facing an issue where the External Dynamic List shows an error when tested by cli command "request system External-list show", the error is "HTTP response code said error", but whem the list is tested from any other device it is accessable a

...

Resolved! FTP_Passive_Antivirus_Profile_Performance

Hi Guys,

 

quickDescription => paloAlto networks physical firewall and antivirus profile for FTP.

Task => Using a script to get/put a file (few hundred kilobytes) from/to the FTP server every 100ms (ten times per second or 20 times per second) . The FTP

...

Resolved! phase 1 up phase 2 down

( description contains 'IKE phase-1 negotiation is failed. Peer\'s ID payload 10.175.150.0 (type ipaddr) does not match a configured IKE gateway.' )

 

 

and ( description contains 'IKE phase-1 negotiation is failed as responder, main mode. Failed SA: 19

...

MP18 by Cyber Elite
  • 11085 Views
  • 2 replies
  • 0 Likes

ALB Health Checks -> Palo Alto -> ALB

Trying to get the Palo Altos to register as healthy. Can anyone provide some assistance on NAT policies, or configurations for getting TCP 80 checks from ALB to Palo Altos to ALB which sits in front of two App servers? 

 

ALB (Palo Altos)

   |

Palo Altos

...

Resolved! IpSec VPN between Palo and Vyatta

Hi all,

 

I try to configure an IPSec tunnel between PA-500 (version 7.1.4) and vyatta.

Config seem to be ok, phase 1 is ok but nego for phase 2 is block in "No Proposal chosen". I select in phase 2 all possibility given by the palo.

 

Any body already su

...

VinceM by L5 Sessionator
  • 8393 Views
  • 8 replies
  • 0 Likes

Resolved! Custom URL Filter - Site Definition Format

We started using Custom URL Categories, and it seems when we define a site, we have to add both a wild card to cover any subdomain, and a / to cover all URI/URL of the domain, IE:

*.acme.corp      (To cover subdomains)

acme.corp/       (To cover all UR

...

Resolved! GUI does not show system logs

On GUI i see traffic logs but no system logs.

LAst system logs are from yesterday.

 

Ran the below command

 

show log system direction
> equal equal

admin@EOCDC-G3-NGFW-2(active)> show log system direction equal backward
Time Severity Subtype Object EventID

...

MP18 by Cyber Elite
  • 4580 Views
  • 4 replies
  • 0 Likes
  • 23941 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks