General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 654 Views
  • 0 replies
  • 0 Likes

Layer 1+2 decisions for PA820 HA pair

This is my first time having the luxury of two ISP's and redundancy in all hardware - I was tryingt to research best practice for wiring the PA pair as active/passive router/nat - I found some mentioning of using port channels to achieve local reduna

...

2isp_asr_pa820_6840_wiring.PNG
stoker by L1 Bithead
  • 3322 Views
  • 6 replies
  • 0 Likes

2nd default route

My PA already has a Default Gwy pointed to the current Internet provider. I got a new Internet provider and I'd like to test the Internet connection by only allow my traffic to go to the new Internet connection. What is the side effect if I add anoth

...

jac101 by L2 Linker
  • 2538 Views
  • 3 replies
  • 0 Likes

Captive Portal doesn't redirect

Hi Community,

 

I'm getting mad....

I configured a simple captive portal in my testing environment with saysing: everything from host A to untrust with tcp-443 and tcp-80 will be captive-portaled - so far so good.

I configured the captive-portal in the u

...

Chacko42 by L4 Transporter
  • 3717 Views
  • 2 replies
  • 0 Likes

Source User Doesn't Show

Dears,

          I have a problem with uses coming from WIFI and non-joined domain the source user doesn't show and show a blank please find the image.

I have installed the CA's for our domain and the PA put didn't work.

 

Our infrastructure as shown bel

...

Infr.jpg
Capture.JPG

IPsec Vpn tunnel was down

PA-850- 8.0.6-h3  Customer complains IPsec  was down how can i check it on gui sytem logs or via cli.

 

Ihave checked the Moniter>system logs and  couldnt find any logs  related to "tunnel-status-down"

Thanks,

Ranji

Resolved! SMTP Relay failing after PA update

Hi,

 

I just upgraded to 7.1.16 and since that point my Windows server can no longer make a SMTP connection to a mail relay service (outbound.mailhop.org) on port 2525.  When I look at the Traffic log, I see the action as reset-both and the threat is "

...

SSL decryption inbound issue

We've been using SSL decryption inbound for a while. In order to decrypt traffic based on DHE and ECDHE ciphers, we moved to PAN-OS 8.0. On 7.1.10, traffic with those ciphers were not decrypted but passed through. Now, on 8.0.6, we see drops.

 

The dec

...

ACortes by L2 Linker
  • 6834 Views
  • 7 replies
  • 0 Likes

Issue User-ID Agent some user mapping long time

Hi Expert ,

 

I found issue about UIA which some user logon into network sometime IP   mapping user  long time or sometime not  mapping I must use clear user mapping and  every time and ip map user on AD  , I would like to know why user  mapping longti

...

Shutdown/Disable MGMT interface due to DNS issues

Hi Guys,

 

I got a simple question for you:

 

Is it possible to literally disable/shutdown mgmt interface, via CLI or webUI, in a VM enviroment when is not needed?

 

I notice a DNS issue after we have deleted the IP address assigned to the MGMT interface v

...

Resolved! PA-5220 HA Config Ethernet or Crossover Cables?

The first step seems a bit contradictory, just looking for some clarification. I have 2x5220s that I am setting up in HA Active-Passive mode. To cable the dedicated interfaces it looks like I just use regular ethernet cables, but the second sentence

...

mike406 by L2 Linker
  • 11746 Views
  • 8 replies
  • 0 Likes

PBF and Tunnel monitoring failing

Hello

I have strange intermittant issue with PBF and Tunnel monitoring. If I disable the IPsec VPN at both side and bring it up PBF and Tunnel monitoring is working at configured. ( Shows as up ) I have configured a monitor IP destination of an addres...

  • 24109 Posts
  • 117 Subscriptions
Top Solution Authors
Labels