This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 191 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 873 Views
  • 0 replies
  • 0 Likes

Clear DF bit for VPN

We have recently migrated our site-to-site VPN so it is now running between a PA-3020 > Cisco ASA 5510.  After the migration we discovered that one of our cross-site applications broke and the vendor determined it was because their application commun

...

Service Accounts and GP

Situation is this, a normal user logs into a PC and GP auto connects.  User logs out and back in as a service account and GP does not auto login.  Any ideas?

Palo Alto Networks Approved
Palo Alto Networks Approved

Resolved! SAML login remove lock (superuser?)

When I am logged in via SAML, I noticed that I was not able to remove other users' locks.  Seems like this may be because I am not a superuser?  Is there any way to make a SAML-authed user be a superuser?

Resolved! Zone Capacities per PA model

Looking to understand the maximum number of zones which can be used in a given firewall based on model.

 

Is there a document out there which shows the maximum number of zones?

 

Specifically these models:PA-445, PA460, PA1410, PA3420

 

If based on O

...

clewis1 by L3 Networker
  • 441 Views
  • 2 replies
  • 0 Likes

Resolved! UserID Agent version compatbility

Hello,

 

I'm currently working through the Certificate Advisory.  We currently have firewalls running 10.1.11, user-ID agent is 10.1.1-102.   Started an upgraded firewalls  to current preferred version of 10.1.13h1.  The issue I have is I am simultan

...

VOICE Issues

I got a PA-1410 ,it has IP telephony, and their server is in the cloud. The phones have an address 10.200.x.x/24 and make the registration request through ports 5060 or 5075 to a server in the cloud with IP 148.235.12x.x through the SIP application.T

...

F.Pinar by L3 Networker
  • 325 Views
  • 2 replies
  • 0 Likes

Resolved! Tufin

Does anyone have experience using this in a larger environment?  Multi vsys?  Panorama? HA Clusters and so on.  Are there better options available?

 

Thanks in advance for your time.

Resolved! TCP MSS Physical interface settings understanding?

Hi, 

 

Can someone confirm if my Understanding for PA "Adjust the TCP MSS" is correct? 


Reference to this link this is how PA Firewall "Adjust the TCP MSS" value in the physical interface.

 

In other Vendor when we configured the TCP-MSS value we usu

...

Silvs13_0-1743481280686.png
Silvs13 by L0 Member
  • 382 Views
  • 1 replies
  • 0 Likes

Failed to validate client certificate, thread : 0, 1-0!

Hi team

 

Version PA 11.1.6-h3

Model 1420

Version USER_ID 11.0.1

Windows 2019

We have had an incident with the User ID agents, which have been disconnected from the firewall.
In the logs of the firewall itself the error message was: “Redistribution A

...

Alpalo by L4 Transporter
  • 333 Views
  • 1 replies
  • 0 Likes

PA460 issues

Hi,

 

We have two FW PA460 in HA, one active and another one passive. We have several issues related to configuration synchronization and HA:

1- Synchronization before a commit can take us up to 8 minutes. With the old FW the commit was in less than

...

BigPalo by L4 Transporter
  • 2210 Views
  • 7 replies
  • 0 Likes

Resolved! IP Sec VPN Paloalto - Starlink

I'm testing Starlink business and having issues passing traffic over my tunnel. This remote site connects to our data center via an IPsec tunnel. I can get the tunnel up and traceroute to the remote side of the tunnel, but I'm unable to pass traffic.

...

  • 24007 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Posts
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks