Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

sometimes the policy matched the multicast packets and sometimes it didn’t when each packet had the exact same source/dest IP and source/dest port?

 sometimes the policy matched the multicast packets and sometimes it didn’t when each packet had the exact same source/dest IP and source/dest port?

 

Some multicast traffic is allowed but other packets are denied. We need to understand why there is

...

site to site ipsec vpn issue

PA 3260 and VM 300 set site to site  ipsec vpn, The Ipsec vpn had been working.But from two days ago ,

it wasn't working ,can you help me to check it ?

 

admin@tfw001> tail follow yes mp-log ikemgr.log

tail follow yes mp-log ikemgr.log
2022-10-08 19:1

...

Palo firewall routing

Hello. New to Palo's. I have a question re routing.

 

I have an interface with, say, 1.1.1.1/24. There is a router on the same network on 1.1.1.2.

 

I have had to add a static route in order to ping/communicate with 1.1.1.2

 

Is this normal Palo beha

...

Source Mac not displaying

 

We have multiple Paloalto firewalls running in version 10.1.X/10.2. None of them are showing the source or destination mac address in the traffic logs. When we select the source/destination mac address column in the traffic logs, it shows blank.

So

...

Paloalto HA probem

Hello,

 

we have a few PA440 clusters where we are unable to activate HA. Software version is 10.1.6-h6.

 

As soon as we enable HA on first node, everything goes down (including internet access) and then the config gets rolled back (due to lost conne

...

Wildfire and Fileblocking

Hi Team,

 

Want to understand how i can use  WF and file blocking.

 

Suppose if am using wildfire analysis and using a default policy 

application - any 

Filetypes - any 

Direction - both 

Analysis - Public-cloud

 

and Using a File blocking profile a

...

  • 885 Posts
  • 34 Subscriptions
Top Solution Authors
Top Liked Authors