This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4239 Views
  • 0 replies
  • 0 Likes

LDAP is not sending framedIPAddress for GlobalProtect Static Assignment

We are trying to configure static IP assignment in globalprotect and have selected the "Retrieve framed ip address" option on the client gateway. I've also selected "Static IP Assignment" under the Dial-In tab in AD for the users and given them IPs that fall in the pool for static assignment, however my clients are not receiving their static IP...

Commits and Firmware Upgrades Failing

I've got a couple of support tickets open on my issues just seeing if anyone has any suggestions/ideas as Support I wait for support to help me out.Configuration: 2x PA-5220's in HA (Active-Passive)Code: 8.0.11-h1 (Moving to 8.0.12 per PA recommendation) Initial Issue: Started having Commit failures on our Primary PAN. After some troubleshootin...

hank08 by L0 Member
  • 4727 Views
  • 2 replies
  • 0 Likes

Panorama configuration is over 80MB

I am getting the following system log message on my Panorama dashboard: The current configuration is 81MB, which exceeds the supported limit of 80MB. We highly recommend that you reduce the configuration size to within 80MB. What are the potential consequences of this "unsupported" configuration size? This config is an amalgamation of multipl...

Resolved! url database - learning new urls from cloud

when new websites comes up we see that it is under unknown category one option is to ask PA to re category that. in some cases we see that after few days that websites is not under known category and is reachable. How does PA cloud database keeps tracks of new new websites coming up everyday? PA cloud database talks to which database on interne...

MP18 by Cyber Elite
  • 3995 Views
  • 6 replies
  • 0 Likes

Palo Alto behind ReverseProxy, how block real IP ?

Hello,I have many website behind my Palo Alto.In front of many websites (and then Palo Alto), I have Reverse Proxy.Into traffic logs I see Reverse proxy IP, not the real visitor IP. I have enabled "Use X-Forwarded-For" and now I see Real IP into colum X-Forwarded-For in Url Filtering. But, it's possible to apply Security Profiles based on the IP...

Resolved! config push from panorama to HA PA

New configuration is pushed from Panorama to a pair of firewalls that are configured as an active/passive HA pair.will both PA active and passive syn theconfig ?

MP18 by Cyber Elite
  • 11212 Views
  • 2 replies
  • 0 Likes

Pre-Logon Machine Certificate placement

When doing pre-logon with machine certificate, where does the certificate need to be placed? Documentation says to put it into computer>personal, but i am unable to do this via GPO directly. Can it be placed into any of the other stores?

welly_59 by L3 Networker
  • 2274 Views
  • 1 replies
  • 0 Likes

Switch Redundancy at Access Layer

This is a bit off topic, but I thought some folks might have some knowledge and wisdom to offer. Where I work we're working dilligently to provide robust resiliency and redundancy for our firewalls using dual powersupplies, HA, and multiple ISP circuits with policy-based routing for failover. Our core switching (also our core router) is also fu...

locampo by L2 Linker
  • 11621 Views
  • 12 replies
  • 0 Likes

Problems with SIP

HelloWe have 3CX server - IP telephony inside the network.When we pass the SIP traffic through PA it gets problemsWe try to connect through SIP :5060 port o outside server on ISP side but it doesnt workwe made application override and also disabled ALGIt is natted also by PA itselfhave you ever some problems regarding SIP?

Radmin_85 by L4 Transporter
  • 3113 Views
  • 2 replies
  • 0 Likes

User-ID agent and SSL Error

I have been getting a ton of email alerts with issues with user-id agent and ssl connection errors even though the status is "green" showing "connected." I have verified the cert is valid and it is a self signed cert valid until Feb 2019. I have performed the steps in the following articles to no avail: https://knowledgebase.paloaltonetworks.com...

  • 24358 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks