This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! SMB versions

I currently have ms-ds-smbv2 and ms-ds-smbv3 permitted but I am seeing ms-ds-smb-base getting denied. What is ms-ds-smb-base? Is this the same as ms-ds-smbv1? Thanks!

SMB : SMB: User Password Brute-force Attempt

Hi, my customer had a problem with this threat. They have a internal app which was failing when palo alto updates changed the action to reset-both. Customer told me that this problem started last 15/06 but i went to the PA updates mails and i didnt see anything about changing the action for this threat (SMB: User Password Brute-force Attempt ID ...

Resolved! How does link monitoring work in High Availability ?

Hi All, I am working on the following HA design - As you can see above, each firewall will have two interfaces connected to Juniper routers on the inside and outside zones. The firewall peers will also be directly connected to each other for the HA links. The plan is to use Active/Passive deployment and I am trying to figure out if this desi...

(Vendor - PAN) 40 Gig PRD Firewalls Topology (1).jpg

Issue with NAT over Site-2-Site VPN

Hi there, I am reasonably good with Palo Alto Firewall however struggling with the NAT over VPN. I am trying to hide some internal IPs behind 9.9.0.1/32 and 9.9.0.1/32 is configured in Proxy ID as Local host. VPN phase 3 comes up but i think the way i am doing NAT is wrong. NAT policy is created is as follows Source Zone Destination ...

nvirmani by L1 Bithead
  • 5509 Views
  • 7 replies
  • 0 Likes

Panorama Problems!

Any ideas how to fix the following error: Failed to establish SSL connection to Panorama Server: Port:3978? We are unable to view the logs on Panorama or push the firewall policy from there as a result so it's causing a few issues to say the least. Any help would be appreciated. Thanks! Nothing has changed on the firewalls or Panorama. Panorama ...

Multiple Globalprotect Gateway using Same ISP on same firewall

We have to implement a Globalprotect VPN Deployment using 3050 in HA Pair in which we have to use a single Portal and define Multiple External Gateways somewhat we call in Cisco Anyconnect as multiple profiles. Is it possible to define Multiple External Gateways using the same Interface catering to different OS types and using a single Portal co...

dborasi by L0 Member
  • 2440 Views
  • 1 replies
  • 0 Likes

Proxy server for PA services

Hello, We are using a proxy server to control Internet access from internal resources, including the PA firewall. This proxy can only be used to reach external destination.Also, we had to configure the proxy server on the PA device (Setup -> Services -> Global) in order for the PA to perform updates. Now we would like to use External Dynam...

Resolved! BGP filtering question

I am trying to migrate from RouterOS BGP setup. I have filter rule likechain=BGPINFilter-common prefix=10.32.0.0/14 prefix-length=14-32 invert-match=no action=discard set-bgp-prepend-path="" basically it drops all prefixs for 10.32.0.0/14 down to /32's how can I do this on the pa.I have something like thisset template ybopa config network virtu...

Resolved! License/Eula for GlobalProtect Portal client v3.x

We have a client that requires GlobalProtect for connecting to their network. Their site provides the installers which is version 3.1.1.27. We have an internal team that insists on receiving a license description or EULA for using the client binaries. They cannot believe that there is such a thing as a software client that doesnt show or store a...

Panorama standby password expired

Hi, One of my accounts on Panorama standby doesn't let me login. I get "Password expired" message. I tired to change password for active unit and that still did not fix issue. I tired to delete and recreate account from active unit that still did not fix issue. How can I clear this flag on standby unit without making it active and changing passw...

junior_r by L3 Networker
  • 3916 Views
  • 6 replies
  • 0 Likes

xForward for IP

Does the Palo Alto support the xForward for IP in relation to content delivery networks? We have the content delivery network fronting traffic and in some cases we see requests coming back showing the CDN IP, we are more curious about the details around the originating IP address than the CDN IP.

jhenkel by L0 Member
  • 1939 Views
  • 1 replies
  • 0 Likes

Resolved! Disk not detected at startup

Hi Community, Yesterday we had an issue with our air-conditioner which caused the Palo Alto Firewall to restart due to high temperature. After the device booted up, I noticed some logs saying that disk is not detected/degraded. I tried restarting it one more time and the firewall still reports those logs. How can I fix this? Your advice/support ...

Capture.PNG
hoangtnk by L1 Bithead
  • 6763 Views
  • 6 replies
  • 0 Likes

Resolved! panorama adding a new device. replacement of another that had fails

I have added a new firewall to Panorama. The new appliance shows a onnected state. This is a replacement of a firewall that had failed,Now i want to delete the other firewall (with fails) that has several vsys,no matter what i do, i cannot to change nothing.Is the firsr time that i am trying to do this.i had read in a KB that i can to use a cli ...

PPPoE, static IP and Brittish Telecom

Hi. I'm having trouble with using a static ip adresses while connecting using PPPoE.Using none on IP adress works. Logs says "'PPPoE session failed to connect for user:user@hg7.btclick.com on interface:ethernet1/1. Reason: No network protocols running, LCP down'" Any ideas?

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks