This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4107 Views
  • 0 replies
  • 0 Likes

Resolved! High number of logins to AD

Good day, Is it normal for the account that the FW uses to get the user-id information from AD to have a high number of logins? Across our entire network, this account is over 90% of all of our successful logins. It just seems that this account is logging in way too much. Thanks

Resolved! LAN users cannot reach GP users

Hi All, I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN. The tunnel of the GP doesn't have an IP address by default, I've tried to add an IP address for the tunnel but its still not working. Nothing ...

How to disconnect remote users at a specific hour

Goodmorning,I need to disconnect one or more users from Global Protect VPN at a specific hour.I try to explain, I don't want that after 7pm the remote suppliers can work on my net. I can't use the scheduled policy rules becouse the sessions started before 7pm (for example Remote desktop or ultraVNC) will stay active.So I have thought to disconne...

FassaSRL by L1 Bithead
  • 8238 Views
  • 5 replies
  • 0 Likes

Resolved! URL Filtering Issue

Hi, Without URL Filtering in the Security Profile of the policy, we can access vimeo.com but with URL filtering profile, getting error message below in IE, Chrome and also on the phone. No proxy used, no SSL decryption. This is happening to the category 'continue' and https.Streaming-media is in Continue Categories. Below is a screenshot of the ...

Error.png
DetailedLogView.png
Farzana by L4 Transporter
  • 4428 Views
  • 4 replies
  • 1 Likes

Source zone - source address

If you enter a specific source zone but any for the source address what traffic is really allowed? Does is only allow addresses that are listed in the specified zone or is it truly any IP address?

jdprovine by L4 Transporter
  • 7584 Views
  • 11 replies
  • 0 Likes

Feature Request - Security Profile policy

Hi, One thing about configuring security profiles is that when I like to change a security profile, there are so many security rules to update with the correct profile. I know I can change the profile itself and all policies using that profile will be affected but that is not always what I want. In my view it would be much better to place securi...

mgusta by L2 Linker
  • 4282 Views
  • 3 replies
  • 0 Likes

Problem Global Protect Behind NAT

Hello I have the following scenario: -PA-3020 Edge Firewall who provide as internet access-PA-200 LAN Firewall behind PA-3020 We are triying to configure Global Protect access for GP-200. -I have a fqdn for the portal and gateway access which resolves a public IP for external access and resolves a privete IP for internal access-Public IP for fqd...

AitorGD by L1 Bithead
  • 4050 Views
  • 1 replies
  • 0 Likes

Resolved! VPN Timeout

Anyone know if there is a way to setup GP VPN to notify the end user before their VPN connection times out? Any feedback will be greatly appreciated. Thanks

tbpowers by L0 Member
  • 2516 Views
  • 1 replies
  • 0 Likes

Commit failed with error "Have to specify one of source or Source-v6 address for netflow"

Hi Team, I am trying to import a firewall for the first time to panorama. I have done many before this but the error this time is new. When I try to push config to firewall which I am trying to import, below message is showned for failure of commit. Details:Have to specify one of source or source-v6 address for netflow.Have to specify one of sou...

Strange Behavior with SIP traffic related to ALG

I'm running into an issue where specific NAT and Security policy names or numbers change then the SIP traffic stops working. I found that if I clear the sessions post change then everything starts working again. I believe this is related to ALG, like the SIP traffic is taking the parent session even though it is no longer valid. I see these sess...

Packet Capture filters not correct

I have a problem once in a while where packet capture filters are not working. I set up the filters at one point and if I delete the filters and set up a new filter. Turn packet capture back on and it still gives me captures of the old filter. I can not figure out how to either clear out the filters or clear out the packet capture files.Anybo...

How to copy from just the right side of the Preview Changes diff window?

In PAN 6.1 if I go to Commit and click Preview Changes - I have the old on the left and the new on the right. The problem is that I want to copy the text from the right side of that screen and not the left. Is there any handy trick that would allow me to do that? I tried the alt key, the ctrl key nothing works. It would be super helpful for crea...

palomed by L3 Networker
  • 2204 Views
  • 2 replies
  • 0 Likes

Getting old PA-200 back in IT life

Helloi inherited on PA-200 on my new job and want to get it back on IT life. While booting i observed the CLI and this is what i got. Needless to say i have no responces to any command entered.Is anyone abel to provide some info how to set it up again?Apprecaited responses. mount: can't find / in /etc/fstab or /etc/mtaberror writing /etc/mtab....

Traffic Logs - Multiple IP's

Hi, Is there an easy way to monitor traffic logs on say 20 IP's to see if any IOC's are being hit? I'm guessing I could build a filter for each IP but I was hoping there might be a way to do it easier. These are not contiguous IP's so CIDR won't help me. Thanks,James

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks