This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

Resolved! Query on L2 bridging over a L3 network

Hi, We have a pair of PA-500s separated by a L3 MPLS IPVPN network. We require to bridge a layer 2 segment across the two sites. One option we would like to explore is going from PA to PA on a new physical port at each end. We need to bridge HSRP and GRE traffic from third party vendor routers at each site. Does PAN-OS8 have the ability to bridg...

Farzana by L4 Transporter
  • 2911 Views
  • 1 replies
  • 0 Likes

PA apps

Hi, We are expecting problem with PA identifying apps.We have sessions in port 13000 being identified as play-station network. These sessions are not related to Pstation. On the another hand, we also have sessions in port 80 being identified as unknown-tcp. why PA is idenfitying like this?? how can we solve this app problem??

Resolved! Problems with assiging ip address to vm-50 on hyper-v

I have some problem with assigining ip address and other parameters to vm-50 on Hyper-V.I have downloaded vhdx file of pan-os 8.0 and installed it.but after i set the ip address it doesnt save the setting.i type commit but nothing changes.unknown ip address.

Screenshot_1.png
Screenshot_2.png
Radmin_85 by L4 Transporter
  • 3862 Views
  • 1 replies
  • 1 Likes

Resolved! Security polices and nat and cluster

Hi So I have a active / active cluster, but I am not sync my VR config. I am connected to an OSPF network lets say my internal network isOSPF int ae1.19 192.168.19.0/24loopback.1 192.168.255.25/32 and 192.168.255.26/32 - ospf routerid (one for each PA)appserver int ae1.25 192.168.25 .2 .3 .1 (.2 & .3 are the router ips, .1 is the HA VIP...

DSRI on IPSec/VPN traffic

We have a rule allowing VPN traffic (IPSec) from our Guest environment. This traffic is non-decryptable. We would like to reduce CPU by disabling Server Response Inspection for this traffic? Do we lose anything from a security perspective if we do so? If there is a change in the application, will app-id still detect it?

Port Forwarding Problem

This should be fairly simple but am at wits end. I need to forward 2 ports from an external IP to an internal private ip (Ports 8088 and 22). I found this article and am following its example: https://nubisnovem.com/pinning-a-hole-in-palo-alto/ Public/Outside IP of PA-220 : 44.44.44.44Internal IP: 192.168.0.222IP I am trying to browse/conne...

PA2.PNG
PA1.PNG
RJSCSLLC by L1 Bithead
  • 8357 Views
  • 6 replies
  • 0 Likes

Auto reconnect Global Protect

Hello Everyone There are some branch offices which have slow internet connection.Sometimes because of no internet connection for 5-10 seconds Global protect disconnect.Is there any option to automatically reconnect global protect?

Radmin_85 by L4 Transporter
  • 7673 Views
  • 3 replies
  • 0 Likes

NAT configuration for a Networks (Not) Connected to the Firewall

Hello! This is the scenario and configuration that works on 8.0.3. It is implemented in our company. Servers on public_dmz have public addresses and access Internet with that addresses. Only server with address 2.2.2.10 needs to be translated to 3.3.3.10 in both directions.2.2.2.10 -> 3.3.3.10 Servers from private_dmz are published on the I...

NAT_slika.jpg
mkopcic by L2 Linker
  • 4165 Views
  • 2 replies
  • 0 Likes

Panorama having issue after after export the tech support via webgui

Hi , I am having the issue after export to tech support file . there was some chnage after that , when commit getting the error "Operation CommitResult FailedDetailsThis config has been sanitized of password data because it was exported by a non-superuser or was part of a tech support export. Please use a non-sanitized config. (see 'phash' fiel...

Resolved! How to configure LDAP profile in multi-domain forest

Background:-We have two domains, let's say domainA.local and domainB.local.-Two domains are trusted each other.-domainA is for parent company, domainB is for child company. What I want to do:-I want to bind to domainB.local by using user under domainA.local. example) binduser@domainA.local Current Result:-I can't bind to domainB. It says Invali...

WS000002.png
emr_1 by L5 Sessionator
  • 3766 Views
  • 1 replies
  • 0 Likes

Applying differing inbound QoS profiles in a dual-ISP failover setup?

Hi- I need to configure a dual-ISP failover setup as described in the following article: https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-a-Palo-Alto-Networks-Firewall-with-Dual-ISPs/ta-p/59774 However, I have a couple of additional requirements and am unsure as to how I can do this on the Palo Alto platform. Firstly,...

en26bq by L1 Bithead
  • 5021 Views
  • 5 replies
  • 0 Likes
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks