General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2903 Views
  • 2 replies
  • 14 Likes

PA-850 Default MTU

I've had nothing but issues with our 850 HA pair since we've put them in production replacing a pair of 3020s.  My previous thread here:  https://live.paloaltonetworks.com/t5/General-Topics/PA-850-amp-Radius-PEAP/m-p/189233#M57311  detailed the initi

...

VPN passthrough

Hi, we're experiencing issue with site-to-site connectivity since we installed PAN firewall in the network few days ago. There are many IPSec (ikev1) tunnels configured between endpoints on the internet and Cisco VPN concentrator (ISR 4k router) behi...

jerryv by L1 Bithead
  • 4602 Views
  • 9 replies
  • 0 Likes

CLI show session all filter - negation

Hello

 

I need to show all session with destination IP 2.2.2.2 from all my worstation but not from my 1.1.1.1

 

How to do that?

Negation using "!"  doesnt work (works perfectly in GUI)

 

show session all filter source !1.1.1.1 destination 2.2.2.2

 

Regards

SLa

...

_slv_ by L4 Transporter
  • 2562 Views
  • 4 replies
  • 0 Likes

Resolved! I can't get IPs from output of minemeld in autofocus.

Hello,

I can't get IPs from output of minemeld in autofocus.

Please refer to the follwoing message and then give me any assistance.

I can see IPs when I enter the follwoing url on a browser.

https://0b2b72a3.paloaltonetworks-app.com/feeds/feedMCWithV

...

Resolved! Disable possibility of Commit

Hi, I want to know if there is some way to know if

In which scenario, we can guarantee that a PaloAlto device united to Panorama (For "x" reason) can give a COMMIT that involves a complaint from the Business Unit.

 

Or there is a button ("Disable" in Pa

...

RCastro by L1 Bithead
  • 2937 Views
  • 4 replies
  • 0 Likes

Resolved! Best Practices for PAN-OS Upgrade without downtime

Hello all,

 

i have Active /passive firewalls

 

how can i upgrade PAN-OS without downtime ??

 

1-when i upgrade active , it will reboot then passive will be active ..

 

2- When i upgrade the new active is it will be back to old active again ?? what about OS

...

Failed upgrade

I tried to do an upgrade from 7.1.13 to 7.1.14 and it appeared to install fine, but the ports, all the ports, failed to come up again. So I rolled it back to 7.1.13 and it went back to working fine

jdprovine by L4 Transporter
  • 2202 Views
  • 6 replies
  • 0 Likes

Upgrade from 7.0.12 to 8.0.6-h3

Hi,

 

I have checked the PAN-OS upgrade document and find it bit confusing. Using standalone device. 

Can someone please confirm if the following upgrade path will be correct?

 

7.0.12 —> download 7.1.0 —> Install —> Reboot

Download 7.1.15 --> Install

Downl

...

Farzana by L4 Transporter
  • 2704 Views
  • 6 replies
  • 0 Likes

Resolved! Upgrading from PA500 to PA220

Sales team reached out to me recommending that we upgrade our PA500 to the PA220. We are a small company with a data pipe of 100MB. We do not have a lot of settings on the PA500. On an average we have around 1500-2000 sessions per the UI Home page. L...

jharlow by L3 Networker
  • 5480 Views
  • 7 replies
  • 0 Likes

PANGP Virtual Adapter Not Created

Hello,

 

The company I work for uses Global Protect as their VPN (transitioning from AnyConnect) and I am having an issue after install.  This is a Windows 7 PC, HP Compaq Pro 6300 SFF, and it does not create the PANGP Virtual adapter.  GP version 4.00

...

RQinD4 by L0 Member
  • 1849 Views
  • 2 replies
  • 0 Likes

OSPF redistribution of static route

Hi

 

I have an interesting situation. I have a Active/Active cluster where I use arp load sharing and fail over for HA VIP which is also the DGW.

So for 10.32.30.0/24

 

.2 would be pa-a

.3 would be pa-b

.1 would be the HA VIP

 

The way the PA's do active acti

...

  • 24019 Posts
  • 99 Subscriptions
Top Solution Authors