This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Azure SAML authentication not Happened via GP Agent

Hi All,

We have implemented the SAML two-factor authentication for Global Protect users.

 

We have tested via browser for SAML authentication, and the page successfully redirected to the Microsoft sign-in authentication page. After signing in, the Tw
...

GlobalProtect IOS stuck

Good day,

 

After updating to10.2.1 and 6.0.2 GlobalProtect client I could not connect to VPN.

The problem was occurred for one endpoint. So I used the second one to connect and update the client.

 

Also the DNS(for split tunnel) was not work. I had to ma

...

Pantelis by L1 Bithead
  • 7547 Views
  • 18 replies
  • 0 Likes

Resolved! ping between vyos router and pa-vm not working

Hey all.

 

I'm starting my PCSNA journey and I've been going through CBT Nuggets and have setup the CBT Nugget lab.

My 1/6 interface 23.1.2.15/24 cannot ping my vyos router ip at 23.1.2.1/24 and vice versa.

I have allowed ping via the interface manag

...

Resolved! Site flagged as GRAYWARE (help!!)

I have detected that my website alde.es has been marked as grayware and it must be a mistake.

It is a very simple website of a non-profit university association that has no advertising.

 

I have checked everything on the server, updated plugins and w

...

PA-3020 AutoCommit fails - commit force fails

Hey all!

I have a problem with my second passive PA-3020. (7.1.7)

We had a loss of power so the firewall was shutdown hard.

When it's booting now, the autocommit fails.

When I do a commit force, it says: "Threat database handler failed".

Then I stumbled o

...

MPI-AE by L4 Transporter
  • 17594 Views
  • 11 replies
  • 0 Likes

UserId Mapping Issue - Regex Issue

We have a user id mapping coming initially as useraname@company.com as we are moving away to a different authentication, the username is coming as company\username and we were inserting default domain as the domain of the company.

 

we were getting u

...

NiteshS by L2 Linker
  • 586 Views
  • 0 replies
  • 0 Likes

ZTP stuck at Connected no

I have a pair of 3410s that I am trying to onboard through ZTP. I have gone through the steps of setting up a cert on the PA and registering the firewalls. However the device state in panorama shows disconnected. I can confirm that the firewalls can

...

VPN Traffic to Internet

Hi Team,

We have a requirement. Our PA Firewall has internet connectivity and VPN set to one of the peer end Forcepoint device.

VPN is up and running. Traffic from Forcepoint LAN to MPLS connected to PA is all working over the VPN.

Now the requiremen

...

NTP Best practices

Hello,

I have a PA firewall without panorama, at present I have public ntp servers in sync with pool.ntp.org which are default from PA. Is this good to use public NTP server or local NTP server ? Please let me know the best practices on this.

High Availability on ESXi for Panorama VM

Hi,
we will deploy panorama VM on esxi server, but only bought 1 panorama license.
So our users want to use high availability from the hypervisor Esxi. Im not familiar with esxi/vsphere.
The question is, if we trigger high avilability from E
...

dns-signature cloud service connection refused.

Greetings:

I am seeing in the System Log the following message "dns-signature cloud service connection refused"  Checking the traffic logs the management IP address is not being blocked.  Where do I look to resolve this error message?   Thank you.

Resolved! Rename Device Group via CLI

Hello,

As part of a large migration process we're maximizing the use of CLI to create configuration within NW, FW, HA dedicated templates, + template stacks + device groups.

One area that I'm having difficulty with is the renaming of existing device-

...

Session Expire Time one month

 

The session expiration time is more than a month apart.

 

I'm using the 10.1.8 version and my search says it's a firmware bug.

 

However, the same symptoms appear in version 10.2.1.

 

Is there a solution in relation to it?

qmso475_0-1694656400580.png
qmso475 by L3 Networker
  • 807 Views
  • 2 replies
  • 0 Likes

Commit Error

Hello.

 

After adding the allowed IP band, I pressed Save, but it is failing.

 

 

 

 

qmso475_0-1694679455987.png
qmso475_1-1694679479302.png
qmso475_2-1694679505579.png
qmso475 by L3 Networker
  • 407 Views
  • 1 replies
  • 0 Likes
  • 24193 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks