This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

Packet Dropped

Hi Team, Need your help.While running global counter I can see continously packets are gettignn dropped with below error. a609598@paf-ld6-mvs-01-01(active)> show counter global filter packet-filter yes delta yes severity dropGlobal counters:Elapsed time since last sampling: 9.310 secondsname value rate se...

IPsec packet drop , once the ecmp is enabled

Hi Team we are facing packet drop issue on ipsec traffic once the ecmp is enabled . we have two ISP and wish to balance the traffic and using balanced round robbin for the same , once this is enabled ipsec packet drop occurs and if we disable ecmp everything is fine . The first internet line is lease line on which the ipsec is terminated and th...

Rameshwar by L3 Networker
  • 7489 Views
  • 12 replies
  • 0 Likes

Active/passive HA on PA5020

I am using this link https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-High-Availability-on-PAN-OS/ta-p/54086 to try to configure active/standby HA on my 5020 and I am confused about the ports (control links (CL) ha1, CL ha1 backup, data link (DL) ha2, and DL ha2 backup) and the assigned IP addresses. Why do I need to ...

Capture.JPG
jac101 by L2 Linker
  • 3132 Views
  • 3 replies
  • 0 Likes

Resolved! How to Use DAGPusher / DAG

I cannot find any documentation on these prototypes. How does MM know what devices to push to? It seems to me we would need to clone stdlib.nonpersistentDagPusher or stdlib.dagPusher and enter some configuration. I also don't understand the difference between persistent and nonpersistent. Since the output doesn't live on MM, I would hope ...

Updating Panorama device templates after forced changes

I've run into a couple of situations where I've had to update the firewall configuration manually because it was disconnected from pan (The ISP forced me to change IPs). The config in Panorama remains unchanged. How do I update this without deleting and re-adding the device? Can I just do another import device config like I'm doing it for the f...

Failed to get WF-500 UPDATES

Hello allThe problem began 3-4 days ago WF -500 stop to get updates.In the Dynamic Updates section when we click check now button the updates of Antivirus and Apps and Threats is ok but not WF-500 UPDATESSome screenshots from the inside of WF-500

a873bde2-606f-4c02-a7d4-3f9c06d5fff2.jpg
e3d3a054-8ae9-4569-925a-e18d8a84f804.jpg
Radmin_85 by L4 Transporter
  • 3756 Views
  • 3 replies
  • 0 Likes

Resolved! Web GUI shows white screen after loading from Context menu

Currently on Panorama 8.0.9 and I've run into an issue where I am getting a white screen on the web GUI when going to a firewall via the dropdown menu from Context. Normal navigation through Panorama works and I'm able to access each of the firewalls through their own GUI. Also a management server restart did not fix this issue. Has anyone else ...

Detailed Documentation

Does anyone know if there are any plans on releasing detailed documentation for MineMeld? Specifically, I am looking for documentation on writting my own prototypes. I know that can can use existing ones as templates, but I would like to see documentation for all of the prototype settings that are available. A detailed User Guide would be nice too.

Resolved! Help with understanding OSPF FIB decision

Hi All, this weekend I had to clean up an asynchronous routing issue, by disabling route advertisement on one side. I have a WAN, which is an upside down triangle, with A and B at the top, and C at the bottom. C was routing right, C->B and traffic was coming back through A, A->C. I disabled advertisements from A, so traffic now flows C...

Resolved! Cisco Guest Mobility Anchor Controller Tunnels are down when placed behind Palo Alto firewall

Hi, I have a pair of Cisco controllers setup as mobility anchor controllers, which will basically initiate EoIP tunnel between them. Recently we have placed a Palo Alto 5250 firewalls between the controllers through virtual wire interfaces. The physical connectivity is as follows Cisco Controller 1 ----> Palo Alto VWire-IN -------> Palo A...

shabeeb by L1 Bithead
  • 5134 Views
  • 3 replies
  • 0 Likes

8.1.2 file-blocking / logging traffic direction

Hi all, after updating from 8.0.x to 8.1.2 we noticed the following behaviour: In the Data Filtering Monitor the direction of the traffic has moved.Connections previously shown as 'from internt to lan' are now shown as 'from lan to internet'.This when downloading a file.A colleague just remembered that there was a notice that all traffic logs wi...

ABux by L1 Bithead
  • 4545 Views
  • 3 replies
  • 0 Likes

DMZ network redesign

Hi all, I'm hoping someone can help me avoid a huge overhaul and outage window of our DMZ network... Our DMZ gateway is currently a Palo interface with GlobalProtect enabled on it. Servers on the DMZ are at a remote site connected via a Layer 2 spanned VLAN. We intend to decommission this L2 link and move to a L3 VPN service. We have an entire p...

dmz.jpg
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks