General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PA lost mapping

hi, we are expecting problems with group-mapping. Yesterday we deleted a group from group-mapping profile and suddenly PA lost match in all the rest of groups in this group-mapping profile. we ran show user group-mapping state all and Number of group...

VPN Client, Can't connect to internal zone?

Hi, Good day!

 

I would like to ask what would be the problem,

 

From outside user accessing via ssl vpn (VPN ZONE) below details are working.

1. It can connect / has the ip pool assigned

2. It can reach the internet using the assigned pool.

 

Problem is fro

...

Pros and Cons of v-wire

I'm setting up a PAN firewall between our company and our business partners who have direct connections to our LAN.  My idea was to use v-wire but some of our other network administrators say it would be too difficult to troubleshoot.  What are the p

...

svanarts by L1 Bithead
  • 2915 Views
  • 2 replies
  • 0 Likes

Commit failing

Running a VM-300 on PANOS-7.0.3

 

When attempt to make a commit (either through GUI or CLI), it hangs at 98%, and then fails.  The commit failure outputs the following:

 

Client sslvpn requesting last config in middle of commit/validate.  
Aborting curren...

mmclimans by L3 Networker
  • 5102 Views
  • 1 replies
  • 0 Likes

QOS with multiple active pbf ISP

Hi,

 

We currently have pbf setup to support two active ISP.

The setup on panos 8;

 

Zone LAN Virtual router 1( aggregated link constisting of two ethernet interfaces)

Zone ISP1 200/200 mbit Virtual router 1( ethernet interface 2)

Zone ISP2 200/40 mbit Virt

...

API timeouts/Web UI unresponsive

 

Hello,

 

Managment plane stops responding when sending a number of User-ID XML API calls to FW (tried using PAN-OS 7.1.5 and 8.0).

Any API calls during this time either time-out or return 502/504 HTTP responses.

After close to exactly 5 minutes later fr

...

Farzana by L4 Transporter
  • 2006 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect Certificate Prompt

My users using GlobalProtect on Windows are experiencing a very strange problem when they connect with GlobalProtect.   I am stuck on this one, any tips, pointers, or possible solutions are much appreciated.  

 

Usage:

  • Our GlobalProtect clients conne
...

certerror.png
mmclimans by L3 Networker
  • 3541 Views
  • 1 replies
  • 0 Likes

BGP establish state flapping.

I have couple of bgp established on the firewall. Confiugured new one to AWS ,tunnel comes up but Bgp is flapping.

System logs.

BGP peer session enters established starte,peer ip:169.254.32.1

BGP peer session left established state,peer ip: 169.254.32.1

...

Select route with shorther prefix length

I have a static route for 172.16.0.0/12 but my PA is also learning through OSPF a route for 172.16.0.0/24.

 

As these routes have different prefix length both are installed in the routing table and the dynamic route for 172.16.0.0/24 learnt through OSF

...

COM-UCO by L1 Bithead
  • 3169 Views
  • 3 replies
  • 0 Likes

Configure a static 1-to-1 destination NAT policy

Hello Live Community, 

 

I am a new comer to the firewall game and I am wondering how would I go about setting up static 1-to-1 destination NAT policy on my PA-500 Firewall. I just recently set up the firewall using the documentation below and everythi

...

lzabler by L1 Bithead
  • 2651 Views
  • 3 replies
  • 0 Likes
  • 24193 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels