This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4558 Views
  • 0 replies
  • 1 Likes

Info about the vulnerabilities and the possible remediations for them.

Dear All, I hope you could help me with the query I could not find answer. The customer is asking for the remediation of the detected vulnerabilities, which I've already researched and found some info about that I've grouped below:Client Side Testing - OTG-CLIENT-004 - Testing for Client Side URL Redirect ---------------------------------...

updating ntp server from old to new IP Addresses

Hello Experts, can you please help me with the query below? We have 2 Palo Alto NGFW in high availability and currently it is being managed via panorama. recently my organization has decided to decommission old ntp servers due to some issues. They have setup new NTP servers and provided us with the new IP addresses which need to be updated ...

LDAP Authentication Profile for non-local users

Hi Team,I am trying to use LDAP as an Authentication Profile for non-local users.I am aware of guide on "Device > Authentication Settings > Authentication Profile" that states "Only RADIUS, TACACS+ and SAML methods are supported".Nevertheless, I have set the LDAP server as an authentication profile, and confirmed that authentication and au...

junghwan by L1 Bithead
  • 3410 Views
  • 4 replies
  • 0 Likes

Resolved! How can I delete security rules from CLI?

I did a search but the commands suggested below do not work on the cli. What Am I doing wrong? I'm trying to delete 400+ rules, I have the rules in an excel workbook. I just want to prepare the command on the excel and copy and paste it to delete the rules. Its a PA5020 running version 10.1.9-h1 configure delete rulebase security rules RuleNam...

Palo Alto Cluster Upgrade

Hi All, Our current setup is We have Active/Passive on main dc and standalone fw on DR site. Configured as Cluster. It is identified that the DR site is affected by a certain CVE, and it is recommended for upgrade. But we also wish to upgrade the Active/Passive Main DC firewall. I cannot find any articles on how to upgrade an Firewall Clus...

Cant reset PA820 NGFW

Hi All I don t have the correct credentials to log into my PA 820 and resorted to resetting the device . However upon restarting the firewall , I m not being presented with the option to enter maintenance mode ( Enter "maint" to boot to main partition ) . It prompting for the login credentials instead. Any assistance would be appreciated ...

PaloAlto VM showing Vxlan alert after upgrade

Hello Team, Just the day after upgrading their VM firewall from 9.1.1.16 to 10.1.10-h2, customer has started receiving some critical alarms from their SNMP probe indicating: " Interface vxlan admin:up", however we have fully analysed the firewall and we can't find any interface with a name similar to that one, no interfaces are down, not even ...

JMBerzal by L1 Bithead
  • 1383 Views
  • 1 replies
  • 0 Likes

Migrating from Windows DHCP to Palo Alto

Good afternoon, all! I'm planning to migrate from my current Windows DHCP servers to Palo Alto DHCP. I'm moving from Windows Server 2012 R2 to an HA pair of PA-850s running PanOS 10.1.9-h3. Looking for traps, best practice, and any places to get bumped. Thanks to all for looking! Gregg

ghughes by L1 Bithead
  • 2547 Views
  • 3 replies
  • 0 Likes

BI-DIRECTIONAL STATIC NAT NOT WORKING

Hi, I have the following situation I want to do a bi-directional NAT for a complete subnet range. I want to translate 192.168.96.0/24 --> 10.196.96.0/24 : 192.196.96.1 --> 10.196.96.1 192.168.96.2 --> 10.196.96.2 ... And this in both directions. When i select bi-directional nat on the NAT policy it is not working for the...

zGomez_0-1698767701056.png
zGomez_1-1698767778179.png
zGomez by L3 Networker
  • 2652 Views
  • 1 replies
  • 0 Likes

Resolved! DDOS / DOS Protection

Is there any benefit of placing an additional firewall on the OUTSIDE of the customer's internet/external router? There is already a perimeter firewall on the inside of this router. (Proposed additional firewall running virtual wire) <---> External Router (BGP and internet links) <----> Perimeter Firewall <----> Internal Router...

Antivirus Download and Install Hanging

Pa11.0.1 onPa820 in High Avaliability mode. The antivirus download and install update job has been at the "download in progress" status for several hours. The last antivirus valid is:4406 -4923 of 31/03/2023. The following resolution answer does not work Resolution [Not work] Run the following commands to clear the stuck download job...

  • 1589 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks