This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4471 Views
  • 0 replies
  • 0 Likes

Resolved! PAN-200 upgrade to 7.0

For some reason, I had to RMA my PAN-200 which is used to demonstrate PAN-OS features. My previous box was 7.0.3 but before the upgrade between 7.0.2 to 7.0.3, I noticed that 7.0.0 was no longer available in the Software list in the Device tab. The new box arrived with a version 5 which I upgraded to version 6.0.0 which unlocked 6.1 and then I...

CharlesP by L0 Member
  • 4417 Views
  • 5 replies
  • 0 Likes

PAN-DB URL Filtering activation problem

Hi All! i am trying to activate URL Filtering from PAN-DB, but i have problems.I upload the license manually and i haven't error, but when i try to download the database this error appear:"URL database download: not available."Then i do the "Retrieve license keys from license server", but this error appear:"Failed to fetch licenses. Failed to ge...

DKanta by L2 Linker
  • 7101 Views
  • 9 replies
  • 0 Likes

A/A Cluster Routing problem

Hi, I´ve a A/A Cluster Setup, where the firewall 0 is primary and the most traffic goes that way.We use OSPF for the routing over the VPN tunnel and some tunnel are configured with a better metric overthe secondary firewall. We want to make some loadsharing over two different internetconnections.When I take a look in the routing table of firewal...

mschwab by L1 Bithead
  • 4110 Views
  • 6 replies
  • 0 Likes

Log Field

where have the document that explain the each log field in traffic log and threat log?

WildFire - how to configure the frequency of file submission to Wildfire cloud for analysis?

Hello Everyone, I did not manage to get this information in other online resources and in Wildfire -> General Settings does not seem to have this option. Hence I am asking for your help on these questions: How can I configure the "frequency" of my PaloAlto as to when it will send sample files to WildFire cloud for analysis? (e.g. time interva...

Setting up Policy Based Forwarding with two ISPs and 1 VPN tunnel

I've already read the articles in the live community for starters. Never setup a branch office before. This new branch office has 2 isp's and 1 VPN tunnel from there to HQ. I have the firewall completely configured already for using 1 ISP and the 1 VPN tunnel. Cannot follow the articles that exist on this subject. There are too many assumptions ...

bvadmin by L0 Member
  • 1932 Views
  • 1 replies
  • 0 Likes

Security Policy Listing

Hello, What’s the best way to generate security policy report to only show the listing of all the Security Policy rules on a PAN? I used the custom report and selected Source Zone, Destination Zone, Rule, and Application(also, played with adding other attributes) but wit didn’t quite generate the same listing as the ones showing when reviewi...

Resolved! Selection of the GlobalProtect portal by users

Hi ! We would like to install 2 GlobalProtect portals:- one for the connection to the internal network since the outside with a VPN by using the GlobalProtect client ;- one for the connection to the internal network with the GlobalProtect client, in premises of the company. To make this configuration easy to use for user, we would to make the us...

Palo Alto with Silver Peak SD-WAN

Hi all, Has anyone done a Silver Peak SD-WAN solution with Palo Alto Firewall ? if so, do you mind share the physical layout ? and how you handle redundancy ? I am working on a Silver Peak SD-WAN solution with Palo Alto firewall. The internet circuit will be terminated on the PA and Silver Peak will sit behind the PA. The PA will be the default ...

datran by L0 Member
  • 3012 Views
  • 2 replies
  • 0 Likes

Resolved! wildcard bitmasks

Will pan os support use of wildcard bitmasks in address objects in future as cisco ASA does.For example aal devices in in the 10.6.0.0/16 supernet ending on .1210.6.0.12 0.0.255.0. This will eliminatie a lot of entires in object address groups.

Resolved! Global protect VPN disconnecting multiple times

Hi,Im facing issue with connecting to GP VPN, unfortunatly im the one who is having issue.VPN works fine on other cmputer but having issue with my computerbelow are the error msg i got during the VPN disconnect time (T10836) 04/11/17 18:51:28:501 Debug( 980): VPN handle dhcp packet(T10516) 04/11/17 18:51:46:676 Debug(1189): SSL3 alert write:fata...

Resolved! Search rules based on Source Zone

Hi, If anyone can help me. Is there a way that i could filter all Security rules just based on the source Zone ? For example just show me Security Rules from Source Zone x ( and i need to see what rule corespondes to that zone) Thanks Alban

Resolved! TAP:Specifying external interface

I'm working on a home lab, have an ESXi server with some UTM VMs running and I'd like to give them something interesting to look at. Following the online documentation (both in support and this: https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-a-Palo-Alto-Networks-Device-for-Tap-Mode/ta-p/59438) I can't seem to get ...

Resolved! Issue allowing port 2463

I'm trying to allow port 2463 (lsi-raid-management) traffic from my untrust zone to one of my vlan zones. I have added it to an application group and added a policy for traffic between my untrust zone and vlan zone with that application group. Every other application in the application group is allowed to pass but 2463 is still being blocked by ...

tglear by L1 Bithead
  • 7478 Views
  • 12 replies
  • 0 Likes
  • 24379 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks