This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1814 Views
  • 0 replies
  • 0 Likes

HA Active/active vwire different location

Dear All,

 

We want to deploy 2 firewall PAN in 2 different location (Building) but same area/complex. Is there any ideal distance for HA link for both firewall? Is it need to directly or i can use via switch?

 

Can i deploy this topology? is there any s

...

topology.png

Resolved! Traffic showing from wrong zone

Hello all, I have a (hopefully) simple problem I can't seem to figure out.

I have recently created a new DMZ zone on my PA for guest users, but when a guest tries to access the internet, the traffic is showing as sourcing from the trust zone instead o

...

Resolved! Windows and User-Mappings

I have a user group in Active Directory where we place users who should not reach the internet. This user group is then tied to a Palo Alto rule to Deny access.

I've noticed (Windows PC) this week, that if a user who is in the Deny group logs in to a

...

Response Page: GlobalProtect Portal Login Page

greetings!

 

up until panos 8.0.7, i could reference logos and background pictures for my custom portal login page on secondary https servers. the web client would load them and display them.

 

now with panos 8.0.8, these externally hosted pictures do no

...

Resolved! Captive Portal is not presented for wireless users

Hello All,

 

PA3020

PAN-OS 7.1.4-h2

 

Having a strange issue with Captive Portal on PA3020  where the captive portal just suddenly has stopped working. Did a management server restart, tested with the PC directly connected into the Guest-VLAN over the wir

...

CP1.PNG
CP2.PNG
CP3.PNG
CP4.PNG

Global protect portal redirect to https

Hi,

 

We have a Palo alto in which if you try to access to the global protect portal using http, its automactically redirected to https.

For example: if we access to http://vpn.xxx.com , the browser redirects to https://vpn.xxx.com. So thats perfect.

 

Bu

...

BigPalo by L4 Transporter
  • 5472 Views
  • 4 replies
  • 0 Likes

External Dynamic List exceptions

Hello,

 

We have recently upgraded our FW to PanOS 8.x (currently running 8.0.8) and we want to use the newly added feature that enable to add exceptions in External Dynamic List.

 

However it doesn't seem to work since the configured IP we put in except

...

GlobalProtect internal gateways

I'm struggling with GlobalProtect and always on.I have it configuerd for Multi-gateways and that part works great.  My issue is when I switch WiFi networks to internal, the globalprotect still tries to connect. I have added internal host detection an

...

Amory by L1 Bithead
  • 4200 Views
  • 5 replies
  • 0 Likes

Running config not synchronized - Sync to peer

Hello ! 

 

We encounter a problem on a power supply on one of our Palo Alto. Since power supply replacement, we've the message "Running config not synchronized  - Sync to peer" but i've one question : Is the active firewall configuration will be pushed

...

Passive firewall initiating syslog connection

We've syslog configured on devices with tcp protocol on port 515. Our passive device syslog connection is breaking every 300 seconds. Can you help in understand why passive palo alto not sending keep-alive?

amey_13 by L1 Bithead
  • 4383 Views
  • 5 replies
  • 0 Likes

Sanity Check on a VPN Design

Greetings all,

 

I've been asked to set up a secure desktop for one of our departments.  The desktop will need access to a few on premises resources such as DHCP, DNS, and AD but, otherwise, it has to be restricted to allow connectivity only to a speci

...

jsalmans by L4 Transporter
  • 2994 Views
  • 5 replies
  • 0 Likes
  • 24242 Posts
  • 117 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks