General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1277 Views
  • 0 replies
  • 0 Likes

Force what Global Protect Portal to use

Hello,

 

Our users will have 2 Global Protect Portals to choose from.

 

 

The users sometimes log in to windows with a smart-card and sometimes with a normal AD-account (Username and password).

 

Not sure if it's possible but can we force what portal they c

...

xen-pv by L1 Bithead
  • 2823 Views
  • 4 replies
  • 0 Likes

Resolved! Captive Portal errors

Hello

 

Early today the captive portal stopped working and UserID didn't get any user mappings. Users couldn't be able to login by SSO or captive portal. After some investigation, we restarted the l3-service and it come back working.

 

The l3svc_ngx_erro

...

Monitor multiple IPs in a PBF rule?

Running 8.0.x on our PA-3020 and PA-220 systems. 

 

In our virtual routers, we can path monitor with multiple IP addresses and take action on AND or OR conditions, but PBF still seems to be limited to a single IP. I'd love to be able to monitor multipl

...

uvdes by L2 Linker
  • 2810 Views
  • 2 replies
  • 0 Likes

Resolved! Two firewalls, identical rules, different behaviour

As far as I've been able to determine, the configuration for the two firewalls (PA-500s) are identical (with different IPs/subnets obviously), but the way they handle blocked connections is very different.

 

On one firewall, a telnet to a blocked port

...

fjwcash by L4 Transporter
  • 5907 Views
  • 4 replies
  • 0 Likes

Resolved! SSL cert mgt-Chrome issues

I generated and imported ssl certificate for secure management. I also made sure the CA is on the local machine. I have no issues with Firefox or IE but on chrome, it shows me cert r=error for mgt interface. Did anyone face this before? please offer

...

Resolved! IPsec question

Hello

I have many IPsec connectios on my PA. But their are 2 that both use 192.168.100.x

Now IPsec A is policy based. So I have configured the proxy ID's. All working fine. Now I have narrowed the routes down to the 2 host I require. Which are 192.168....

Resolved! Issue with setting QoS egress value with API

For scripting purpose I need to be able to set egress-max values in QoS with the API.

First I created a QoS profile, TRUST-QOS,  and set the egress-max to 20

In powershell, I have the following:

 

 

$paURL = "https://" + $PAIP + "//api/?key=" + $apiKey +...

Global Protect on Chrome OS forget and reset portal.

I keep having to click forget on the chromebook globalprotect client and re add the portal to get it to connect to the VPN on the PA firewall. This happens daily to many of the Chrome OS devices.

Also the + button to add a second portal does not work.

...

DNAdmin by L1 Bithead
  • 3721 Views
  • 5 replies
  • 0 Likes

Resolved! internal routing being blocked

I'm having an issues with some internal routing I have two virtual router that have statics routes for an internal phone network on a different router in my trusted zone I can ping from computers in my lan but when i try and access any websites or ma

...

Drawing2.png
kclarke6 by L1 Bithead
  • 4928 Views
  • 7 replies
  • 0 Likes

Panorama - dynamic updates not working

Software Version 8.0.9

Application Version 8024-474 

 

Panorama VM is not receiving dynamic updates. I have checked traffic is allowed and also license is not expired.

On manual check it is getting this error.

 

 

Also tried updating by directly uploading t

...

image.png
image.png
image.png
image.png
raji_toor by L4 Transporter
  • 4654 Views
  • 4 replies
  • 0 Likes
  • 24178 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels