This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

Block web browsing but allowing other apps.

I need to block webbrowsing but allow other apps which has web dependency.Trust to untrust - all allowed. But when I deny webbrowsing from trust to untrust other apps like skype stops working.Requirement is only web-proxy ip is allowed webbrowsing from trust to untrust.How do we overcome this issue.

2 Factor Auth Issue

Hello, We are having issue with GlobalProtect VPN client when using 2 Factor Authorisation to authenticate. Instead of being presented with a second login prompt to enter the code from the keyfob, Palo Alto is rejecting logins unless the keyfob code is appended to the user’s password on the initial login prompt. How can we change this to the des...

Farzana by L4 Transporter
  • 6275 Views
  • 8 replies
  • 0 Likes

PBF SMTP for both ISP1/ISP2

I'm wondering if anyone has a similar setup and got it working. I'd like to have both SMTP services enabled on two ISPs for load-balancing and redundancy. I tried using PBF but couldn't get it working. It seems SMTP for ISP1 works fine but SMTP for ISP2 comes into the firewall but the application is incomplete. Which tells me the 3 way handshake...

x by L1 Bithead
  • 2621 Views
  • 1 replies
  • 0 Likes

Over 110% untilization

I am seeing my management plane spiking over 100% when do a preview and a commit, what could be causing that ? Also can a defrag be run or need to be run on the hard drive?

jdprovine by L4 Transporter
  • 9868 Views
  • 27 replies
  • 0 Likes

VM based PAN FW

Hi,I have not been able to list the interfaces on VM based PANOS 7.1.0 after the VM PAN FW boots successfully. interfaces have been set to vmxnet3 type on VM settings. I have configured 3 interfaces (1mgmt and 2 data). assiged the static mac-address. show interface management -->list the ip address 192.168.1.1show interface all -> doenst ...

Minmeld on Unbuntu

Hi, We run a hyper-v shop so I am looking to set this up on Unbuntu. Just a few questions before I set off on the install: Can we install with the most recent version of Unbuntu? Is there a reason I need to run it on 14.x? I didn't resource requirements on the Unbuntu install page - what I do I need for CPU, RAM and disk space? Any other r...

Minemeld engine stopped - error starting engine

I would like to create ipv4 output based on the aws ec2 and route 53 miners. I cloned miners, aggregator and output from prototypes. When I hit commit nothing happens. I can see the processes stopped under System. If I hit restart for the engine, I get Internal Server Error. I already tried by rebooting the server and tried the same. I have atta...

Resolved! VLANs for HA links

Hi all, I am configuring two PA 3060 in A/A HA across datacenter. All the HA links from a PA in a DC will be connected to the core switch. Is it possible to put all HA links, i.e., HA1, HA2, HA3, HA1-backup, HA2-backup, in a single VLAN? Or does each link needs a separate VLAN? Thanks

AlbertJJ by L1 Bithead
  • 5195 Views
  • 4 replies
  • 0 Likes

User-ID Hierarchy Design

So we have our device groups laid out like this, there’s more but you get the idea. Shared > Regional > Site.The devices are members of the Site device group, and have a master device allowing me to push User-ID rules down through Panorama. If I want to do Regional or Shared User-ID rules, I have to collapse the device groups so they’re al...

problem with IP helpers after migration

We're migrating from a PA-2020 to PA-3020.PANOS 6.1.12 Config migration went fine. And most functionality is ok on the new device.However our IP helpers don't work anymore. We use them on tagged subinterfaces.All subinterfaces on one interface connected to switch. Capture shows the device receives the DHCP discoveries. But it does nothing with t...

dieter_b by L4 Transporter
  • 5955 Views
  • 5 replies
  • 0 Likes

[MAC Book]OSX USB Serial can't been connected to PA Series when maintenance

Hi all I am using mac os and I installed usb seria dirver on my labtop. The usb serial is from Prolific. when panos is booted and login, that is working reponse properly but when I enter the maintenance mode, I couldn't choose menu[factory reset etc,,] that I want, It seemd like interuppting, I tried to do command line for many severtimes, I...

John_Lee by L2 Linker
  • 3825 Views
  • 1 replies
  • 0 Likes

User-ID inconsistancies

Hello, It's not the first time that I am facing this kind of issue : Context : PaloAlto FW with (multiple) userID agents in a single (or multiple) Microsoft domain and user id based security policies. The User ID feature seems at a glance to be working well, however sometimes UserID seems to "loose focus" on several source IP addresses (users). ...

logs.JPG
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks