This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 264 Views
  • 0 replies
  • 1 Likes

NAT allocation during a pool configuration.

Team,

We have a NAT pool configured for one of the ongoing requirements. Is there a way to force this pool to allocate IP address from start to end as per new requests come in?

 

e.g. NAT pool configured is 10.10.10.1 to 10.10.10.10

IP source is anything

...

nson2139 by L3 Networker
  • 2523 Views
  • 4 replies
  • 0 Likes

Security Policy not HIT after work for 1 month

I got setup 6 AWS VPC with direct connect connection to on prem panorama, which is working fine for a month, and now suddently all 5 VPC disconnected from panorama in the same time.

 

i checked the BGP and IKE all established, i can ping the panorama I

...

Resolved! PANOS 7.1.x Internet Explorer web management slow

Hi,

 

I upgraded our FWs from 6.1 to 7.1 a few weeks ago and ever since the web management access from Internet Explorer is painfully slow to load - takes around 1 minute to bring up the dashboard after logging in or contexting from Panorama to a firew

...

JackGray by L1 Bithead
  • 3383 Views
  • 3 replies
  • 0 Likes

Resolved! Session Timeout Settings

Hi,

we are using a PA environment in combination with Bluecoat Proxy SG for caching and user authentication. Bluecoat describes on his knowledgbase KB3323 the differences for session timeouts on proxie servers and firewalls.

From our proxies I have man

...

PA System Logs

Dear Expert ,

 

I need to get all System messages of PA in case of the below Events

 

  • CPU Errors, warnings.
  • Memory, RAM utilization warning, problem.
  • Hardware failure, problem. .(Physical Events)
  • Links , interfaces down.
  • Processor warning.
  • Disk warning.
  • Fan wa
...

hi Community

Hi all,

 

We have upgraded globalprotect version 3.1.4 to 4.1.2. Its connected successfully . But after some time it saying portal not available. username take as portal name. anyone experience with globalprotect 4.1.2???

Resolved! Palo-Cisco VPN Logs

Im setting up a s2s vpn between a Palo and a Cisco ASR. The GUI is showing it all as up - green lights and ike tunnels. But the logs are showing the below:

 

IKEv2 child SA negotiation is failed message lacks KE payload

 

I am not sending traffic down th

...

welly_59 by L3 Networker
  • 5936 Views
  • 5 replies
  • 0 Likes

Custom HIP Check for Linux

Hey guys,

 

I've been tasked to have Globalprotect only allow company owned devices over the VPN. I know I can create custom HIP checks for Windows/Mac (reg/plist value). How would I do the same for Linux clients?

 

I have two end users that work remote,

...

Unable to find interface configured in vm machine in vmware

I’m new to Palo Alto VM series deployment and it’s the new project .. we’re trying to deploy Palo Alto HA in VMware environment . Deployed ovf template and configured management interface . Connected to GUI and all looks ok . But I’m not able to conf...

Hari007 by L1 Bithead
  • 5328 Views
  • 6 replies
  • 0 Likes

Resolved! DH group 15 IPSec tunnel

Hi

I must build up an IPSEC tunel between PA and Watchguard XTM. The other Side gives me ike phase where DH Group is 15.

 

On PA I only can choose Group 1—768 bits, Group 2—1024 bits (default), Group 5—1536 bits, Group 14—2048 bits, Group 19—256-bit ell

...

PPTP VPN can not be connected to external devices

I have built a VPN server in company domain and I have tried to connect it in the domain computer. Now I need it can be connected to external computer. I have search many information in Internet to know how to do this setting in firewall. But it stil

...

Jacky.Yi by L0 Member
  • 2381 Views
  • 2 replies
  • 0 Likes
  • 23630 Posts
  • 107 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks