This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4517 Views
  • 0 replies
  • 1 Likes

"LAN" and "WAN" interfaces for the Palo Alto Networks Cloud NGFW SaaS offering within Azure Virtual WAN

Hello Team,We are in the process of switching over from VM-Series PA to PA SaaS within Azure vWAN. Palo Alto VM-Series firewall, we explicitly created and configured LAN and WAN, however for PA SaaS within Azure vWAN is there a need to create? We also cannot create a new VNET/Subnet in Azure vWAN to associate it with the interfaces, so how doe...

No policy recommendation for IoT

I have my firewall (PA-440) licensed with an IoT security license. The IoT security portal is working great and recognizing devices in my network. But I have a problem: I don't know why, when I go to the policy recommendation for IoT, the profiles from the security portal don't appear, even though the portal recognizes the firewall and the devic...

Txopoo by L0 Member
  • 2670 Views
  • 2 replies
  • 0 Likes

BGP configuration help

I'm trying to set up BGP over an IPSEC tunnel between a Palo Alto firewall and a Cisco device. The Cisco side will advertise 190 prefixes via BGP to Palo Alto. I want to send traffic to those prefixes, but without manually creating address object groups.How should I configure the Security Policy and NAT Policy rules to allow traffic to those pre...

ASudheer by L1 Bithead
  • 468 Views
  • 0 replies
  • 0 Likes

Cloudflare fronted websites breaking geo location restrictions!

Like many of you, I default block outbound traffic to sites not located in my country. It seems that Cloudflare has started to send traffic to their proxies located in foreign countries. This is causing our users to get blocked. I can add the web site to our list of internationally allowed web sites, but we have had several instances of this hap...

khsieh by L2 Linker
  • 2003 Views
  • 2 replies
  • 0 Likes

Asymmetric routing assistance

I have a Meraki that has a SVI for vlan 5, 172.18.5.2 and it's trunk to a firewall that also has an SVI for vlan 5 172.18.5.1. There is a default route from Meraki pointing to 172.18.100.1 which is on the firewall. Meraki has an SVI 172.18.2.1. Server 172.18.5.76 is unable to reach IDRAC 172.18.2.75 via https though ANY is allowed on firewall. I...

after Global Protect update not install network adapter

after update or install a new global protect version on windows 10/11 the network adapter doesn't install, to solve this problem you need to do some KB like: KB Palo Altohttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZN8CAM KB Windowshttps://answers.microsoft.com/en-us/windows/forum/all/error-0x800f0217/bbce9a43-f43...

RChiarellaCandiotti_0-1750117722739.png

Asymmetry routing and NAT

Attending a class about cloud security - AWS, Its mentioned that we can have 2 different subnets, SubnetA connected to internet gateway for ingress traffic and SubnetB connected to NAt gateway for egress traffic. An this should/have to be done how transit gateway routes play out, and is architectured as such to allow for traffic inspection with ...

raji_toor by L4 Transporter
  • 749 Views
  • 0 replies
  • 0 Likes
  • 1795 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks