This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1994 Views
  • 0 replies
  • 0 Likes

Resolved! Advertise NAT Pool via BGP

Hi,

 

I need to advertise a NAT pool to an external partry via BGP. When i attmpt to configure the static route with as below.

 

 

 

 

I get the error message when attemping to save the virtual route configuration.

 

 

What is the correct way to configure a st

...

nat configuration.png
nat error.png

Resolved! About last 30days query.

Hello

 

Here is a qurery about last 30days.

I just would like to change started date/time automatically when Minemeld do the query.

 

{"operator":"all","children":[{"field":"sample.malware","operator":"is","value":1},{"operator":"all","children":[{"f

...

Cybersecurity Thoughts

Hi,

I have recently read many Plao Alto and TrendMicro research articles, predictions and reports on subject of cybersecurity. Regardless of personal opinion there are possible catastrophic results that could happen in case of abuse of certain sectors

...

WillAlt by L1 Bithead
  • 2861 Views
  • 1 replies
  • 0 Likes

Resolved! pa200 two interfaces in same zone

hi everyone,

 

we have a pa200 with three L3 interfaces currently in use:

 

eth 1/1 - untrust - dynamic ip

eth 1/2 - trust - 192.168.18.1/24

eth 1/3 - dmz - 10.10.10.254/24

eth 1/4 - currently unused

 

Now we would like to configure eth 1/4 just like eth 1/2,

...

Resolved! Latency on Internal Interface

Hello,

 

Using PAN-OS 8.0.7. When we ping a trusted interface, we see latency up and down. Any clues?

 

root@test-machine:~# ping 10.2.2.100
PING 10.2.2.100 (10.2.2.100) 56(84) bytes of data.
64 bytes from 10.2.2.100: icmp_seq=1 ttl=63 time=3.46 ms
64 bytes

...

Farzana by L4 Transporter
  • 20934 Views
  • 9 replies
  • 0 Likes

UserID Factor Completion Time - Bad Data

We are seeing some random UserID entries being fed into our firewall that have a Factor Completion Time of "1969/12/31 19:00:00"; these always have a timeout of "0" so effectively kill the user mappings for that user.

 

Has anyone seen this before?  We

...

apackard by L4 Transporter
  • 4392 Views
  • 3 replies
  • 0 Likes

Zone protection - alert only

I have been investigating zone  protection and DoS protection for awhile now and I think I would have already implemented it if you could configure all the settings to alert when you begin testing.  

jdprovine by L4 Transporter
  • 4092 Views
  • 7 replies
  • 0 Likes

Resolved! pan-os 8.0 ntp not sync

Hi,

 

I have a problem with test VM-300, NTP not sync and use local clock.

But if i try to set timezone - clock set not correct

 

 

>show ntp

NTP state:
NTP not synched, using local clock
NTP server: 178.124.164.107
status: rejected
reachable: yes
authentication

...

SSergey by L1 Bithead
  • 9960 Views
  • 4 replies
  • 0 Likes

Resolved! How to configure a specific event to be sent via email

Hi Guys,

How would I go about configuring my PA to email me everytime another device with the same IP address of the Palo Alto joins the network, please? I didn't want anything else to be emailed to me, just that particular event. I remember I was abl

...

sonivEX by L0 Member
  • 2875 Views
  • 3 replies
  • 0 Likes

H/A Clustering Query

Hi,

 

I have a query regarding H/A clustering, I potentially have a requirement for H/A clustering with 3 firewalls and not just 2 (i.e. Active/Standby or Active/Active).

 

I believe that presently a 3 firewall cluster is not currently supported however

...

Data Plane high PA - 5020

i have problem about data plane, and the TAC say : packet rate is high, but i cannot find, how much PA-5020 can handle packet rate maximum.

i use command "show system statistic sessio" packet rate is 130K - 150K and dataplane 77% at 11:00 AM, but i se

...

  • 24215 Posts
  • 117 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks