This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4562 Views
  • 0 replies
  • 1 Likes

Cloudflare fronted websites breaking geo location restrictions!

Like many of you, I default block outbound traffic to sites not located in my country. It seems that Cloudflare has started to send traffic to their proxies located in foreign countries. This is causing our users to get blocked. I can add the web site to our list of internationally allowed web sites, but we have had several instances of this hap...

khsieh by L2 Linker
  • 2214 Views
  • 2 replies
  • 0 Likes

Asymmetric routing assistance

I have a Meraki that has a SVI for vlan 5, 172.18.5.2 and it's trunk to a firewall that also has an SVI for vlan 5 172.18.5.1. There is a default route from Meraki pointing to 172.18.100.1 which is on the firewall. Meraki has an SVI 172.18.2.1. Server 172.18.5.76 is unable to reach IDRAC 172.18.2.75 via https though ANY is allowed on firewall. I...

after Global Protect update not install network adapter

after update or install a new global protect version on windows 10/11 the network adapter doesn't install, to solve this problem you need to do some KB like: KB Palo Altohttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZN8CAM KB Windowshttps://answers.microsoft.com/en-us/windows/forum/all/error-0x800f0217/bbce9a43-f43...

RChiarellaCandiotti_0-1750117722739.png

Asymmetry routing and NAT

Attending a class about cloud security - AWS, Its mentioned that we can have 2 different subnets, SubnetA connected to internet gateway for ingress traffic and SubnetB connected to NAt gateway for egress traffic. An this should/have to be done how transit gateway routes play out, and is architectured as such to allow for traffic inspection with ...

raji_toor by L4 Transporter
  • 792 Views
  • 0 replies
  • 0 Likes

Palo alto Strata Cloud Push Error

I have been getting following error on Strata Cloud when trying to push the config to firewall [errors]: invalid auth type(Module: routed)[errors]: client routed phase 1 failure[errors]: Commit failed[errors]: Local configuration size: 14 KB[errors]: Predefined configuration size: 19 MB[errors]: Merged configuration size(local, panorama pushed, ...

DPatel31 by L1 Bithead
  • 750 Views
  • 1 replies
  • 0 Likes

Decryption: Client and decrypt profile version mismatch

Hi folks, Have been seeing a lot of "'Client and decrypt profile version mismatch. Supported client version bitmask: 0x08. Supported decrypt profile version bitmask: 0x60. ' errors in the log lately. This article: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/decryption/troubleshoot-and-monitor-decryption/decryption-logs/decryptio...

Can we set data cap with QOS in Palo Alto for an app-id

Can we set data cap with QOS in Palo Alto for an app-id. We would like to put a datacap on the backup to 400GB per month as we have data usage to 1 TB per month. Please advise if this can be done. I am aware we can restrict only bandwidth, please advise if this is applicable.Please share configuraion that would be helpful

How to Interpret running resource-monitor avg & max

Can anyone help explain and whether my understanding is correct? avg is the average usage % in the past 7 daysmax is the peak usage % at a certain timeIs the overall DP cpu operation normal??Because max is displayed as 9x~100, it makes people feel worried Also, why is there no data displayed for Core 0.10.11?? Thanks to anyone who replies

hcheng763718_0-1750392530713.png

Resolved! PANOS 11.1.6-h3

Hi All, I am having all my Panorama & PA on-prem & VM series running with 11.1.6-h3 , Do we see any issues ? I am still required to consider another upgrade ? What will be the target PANOS? Thanks & Best Regards Yuvaraj Karvekar

Error in Outlook Email Server Profile

Hi all, I'm currently experiencing an issue with my connection to the Outlook email gateway. When using Gmail as the email gateway, everything works fine. However, I encounter problems when switching to Outlook. To test the connection from the Palo Alto firewall to the Outlook email gateway, I used my personal Outlook account. Unfortunatel...

zedexxx_0-1750837217217.png
zedexxx_1-1750837226682.png
zedexxx by L1 Bithead
  • 1034 Views
  • 1 replies
  • 0 Likes

Paloalto security Architect/Consultant - Advice

Hello Everyone, I've been working with Palo Alto firewalls for some time now and am looking to explore opportunities in solution design, architecture, and consulting. I know there are many talented professionals here who are already succeeding in this space. I’d greatly appreciate any advice, insights, or roadmaps you can share. Thank you,Murali

  • 1589 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks