This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4598 Views
  • 0 replies
  • 1 Likes

Resolved! portal-auth vs gateway-auth

Hi, I’m trying to understand Palo Alto VPN client, Global Protect login process with logs and I’m a little bit confused. What I can see in logs: First is: portal-auth. Then usually portal-gen-cookie Next gateway-auth And finally, gateway-register I would think the portal-auth would be login to PA portal but it is not so I’m quite confused what...

Create csv file for fqdn ip resolutions

Hi All I'm busy trying to extra IP's from my fqdn addresses.Wondering if i could get some guidance.I've done the set address set address ht-autodesk.com fqdn autodesk.com What i'd like to get out of this is resolution IP's for this fqdn.As i don't want to go via the GUI and extract 1 by one. I have 7 address groups applied to a policy with a...

Jeffrey_Makuch_0-1699941265034.png

Missing Port-Channels and Subinterfaces in ASA Migration

I am currently working on a project involving the migration of an ASA firewall. However, I have encountered an issue during the import process. After importing the configuration file, I have noticed that the port-channels and subinterfaces from the source ASA are not showing up in the new platform. This is problematic because utilizing the messa...

Info about the vulnerabilities and the possible remediations for them.

Dear All, I hope you could help me with the query I could not find answer. The customer is asking for the remediation of the detected vulnerabilities, which I've already researched and found some info about that I've grouped below:Client Side Testing - OTG-CLIENT-004 - Testing for Client Side URL Redirect ---------------------------------...

updating ntp server from old to new IP Addresses

Hello Experts, can you please help me with the query below? We have 2 Palo Alto NGFW in high availability and currently it is being managed via panorama. recently my organization has decided to decommission old ntp servers due to some issues. They have setup new NTP servers and provided us with the new IP addresses which need to be updated ...

LDAP Authentication Profile for non-local users

Hi Team,I am trying to use LDAP as an Authentication Profile for non-local users.I am aware of guide on "Device > Authentication Settings > Authentication Profile" that states "Only RADIUS, TACACS+ and SAML methods are supported".Nevertheless, I have set the LDAP server as an authentication profile, and confirmed that authentication and au...

junghwan by L1 Bithead
  • 3509 Views
  • 4 replies
  • 0 Likes

Resolved! How can I delete security rules from CLI?

I did a search but the commands suggested below do not work on the cli. What Am I doing wrong? I'm trying to delete 400+ rules, I have the rules in an excel workbook. I just want to prepare the command on the excel and copy and paste it to delete the rules. Its a PA5020 running version 10.1.9-h1 configure delete rulebase security rules RuleNam...

Palo Alto Cluster Upgrade

Hi All, Our current setup is We have Active/Passive on main dc and standalone fw on DR site. Configured as Cluster. It is identified that the DR site is affected by a certain CVE, and it is recommended for upgrade. But we also wish to upgrade the Active/Passive Main DC firewall. I cannot find any articles on how to upgrade an Firewall Clus...

Cant reset PA820 NGFW

Hi All I don t have the correct credentials to log into my PA 820 and resorted to resetting the device . However upon restarting the firewall , I m not being presented with the option to enter maintenance mode ( Enter "maint" to boot to main partition ) . It prompting for the login credentials instead. Any assistance would be appreciated ...

PaloAlto VM showing Vxlan alert after upgrade

Hello Team, Just the day after upgrading their VM firewall from 9.1.1.16 to 10.1.10-h2, customer has started receiving some critical alarms from their SNMP probe indicating: " Interface vxlan admin:up", however we have fully analysed the firewall and we can't find any interface with a name similar to that one, no interfaces are down, not even ...

JMBerzal by L1 Bithead
  • 1400 Views
  • 1 replies
  • 0 Likes

Migrating from Windows DHCP to Palo Alto

Good afternoon, all! I'm planning to migrate from my current Windows DHCP servers to Palo Alto DHCP. I'm moving from Windows Server 2012 R2 to an HA pair of PA-850s running PanOS 10.1.9-h3. Looking for traps, best practice, and any places to get bumped. Thanks to all for looking! Gregg

ghughes by L1 Bithead
  • 2612 Views
  • 3 replies
  • 0 Likes
  • 1586 Posts
  • 61 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks