This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4517 Views
  • 0 replies
  • 1 Likes

Block URLs with exceptions

Hello everyone, my name is Phil and I am in charge of the network structure in a municipal utility with 2 other people. We have 2 PA-3220s with software version 11.0.2-h2 and several PA-400s in use. We are faced with the following problem:We want to block the entire Internet for one user (Active Directory is connected to Palo Alto), except for 2...

Resolved! Restricting non work related downloads and applications

We have users that are able to download games from url site not classified as games on their work laptops to their personal folder on the fileserver. Is there anyway to restrict access to .exe file downloads and use without having to have a huge exception lists? I would like to hear various options if you have them

Resolved! Firewall subinterface

Greetings, i have some doubts in configuring sub interface. i have eth1/1 (physical interface)ip-10.0.2.1 now for some testing i want to configure a sub interface for eth1/1 with same subnet like 10.0.2.2 and without vlan tag. will this work ??? can i have same network on both physical and sub interfaces ?? what should i be aware of????

Resolved! PA-220 Unable to install Panos from 10.0.0 to later version

I was trying to upgrade a PA220 from 9.1.X to 10.1.12. The Plan is to upgrade to 10.0.0(Install &Reboot) --->10.1.0 -->10.1.12(Install & Reboot) After upgrading to 10.0.0, auto-commit completed and system is up and running without any issue. However, when I try to install 10.1.0 or 10.1.12. getting the below error. Failed to ...

Puvi12 by L2 Linker
  • 4692 Views
  • 3 replies
  • 0 Likes

Path monitoring vs BGP

Hey community, We have a dual ISP environment, when one is used as a backup if the primary line stops working. I'm wondering what would be the best approach to configure HA in this situation (on the VR). I did it with path monitoring as it seems much simpler and straight forward. But can't decide if BGP is the better option for this scenario. ...

Stuck in - Server rebooting - please wait while the server reboots

I have a PA440 running PanOS 10.1.3, it seems to be processing traffic normally, but I cannot reach the GUI, it seems stuck at this loading page. The external interface is pinging just fine. I have CLI access, what command lines can I run to troubleshoot, diagnose, and resolve this issue? I'd like to not reboot this device, but if I must then I ...

pa440_serverrebooting.png

Evaulation License

I have got Eval License from Palo team(For studying purpose), now I have deployed in VM however I would like to activate the trail License.May i know what is the procedure?Please be informed I don't have support account.

AE interface on PaloAlto HA Active Active configuration

Hi All I have plans to change my Palo Alto PA3200 HA from active passive to active active. What I still have doubts about is the ae (aggregate) interface on active HA, is the mechanism the same as the layer 3 interface, which requires a floating IP to be used as my endpoint gateway? So I need a total of 3 IP addresses, for Palo Alto 1, Palo Alt...

Security Rule hitcount not incrementing, but traffic monitor shows rule being used on PA-850

Hi Community! Recently I stumbled upon this weird behavior where a security rule shows 0 hit-count, but when looked under the traffic monitor lots of traffic is being allowed by that rule. This is the rule in question (0 hit count marker): This is the traffic monitor logs, where we can see the rule being used: Does someone know why the hit c...

Juan_Alvarez_0-1666649841977.png
Juan_Alvarez_1-1666649982899.png
  • 1795 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks