This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4551 Views
  • 0 replies
  • 1 Likes

Resolved! PaloAlto/Okta CaptivePortal Stopped Working

Hello! I've had PaloAlto/Okta captive portal authentication working for awhile now. I recently upgraded Okta to Okta Identity Engine, and also upgraded my PA to the latest 10.x.x version. One of those upgrades appears to have broken the Okta/PA integration. SP initiated authentications STILL WORK. IDP initiated authentications do NOT WORK - ...

After upgrading I am unable to perform dynamic and software update in palo alto firewall

Hi Everyone, After doing the upgrade I am unable to perform both the dynamic and software update manually. When I click the 'check now' option its keep-on loading. There is no error message. The palo alto firewall is not blocking the traffic. I am able to see that the packet is leaving the palo alto firewall. The firewall was using a managemen...

Resolved! PA-5220 downgraded to 8.1.24 after factory reset the admin account does not log in on the console port

PA-5220 came with PANOS 9.1 but the customer runs 8.1 on older Panorama gear. After downgrading PANOS they were setup and run successfully. The PA-5220 was reset to factory default for being deployed in a new location. After reboot waited 24 hours and still cannot log in with default admin account. Booted in to maintenance mode and found the ...

Upgrade 10.1.10-hx to 10.2.4-hx

Is there any good reason for me not to upgrade some 5220 series Firewalls from 10.1 to 10.2? One of the reasons I would sort of like to do this is to eventually get waste deep in some ML stuff. Will I break anything at this point? We are running GP 6.0.5 at the moment (about to jump to 6.0.7) as well.

birkhojk by L2 Linker
  • 1836 Views
  • 3 replies
  • 0 Likes

Resolved! In a DHCP environment, how can we grant certain users internet access via the Paloalto firewall?

We have over 200 users on a network, and IP addresses are assigned using DHCP. However, we have a customer request to allow internet access on ports 80 and 443 for specific individuals(may be 50 or more) via the Paloalto firewall. Please review and confirm the various configuration options.

shivunrp by L1 Bithead
  • 3198 Views
  • 5 replies
  • 0 Likes

Using AUX port as management port

Hello everybody, I'm configuring a pair of PA5250 in active/standby high availability mode. Since we have no RJ-45 ports on our switches, I would like to use one of the AUX ports as the management port in place of the default MGT RJ-45 port. We are using 10 Gbps SFP+ transceiver (long range, single mode fiber), and the AUX-1 configured as th...

grenzi by L3 Networker
  • 3668 Views
  • 3 replies
  • 0 Likes

Lost NGFW PA CLI superuser password

Hello. I have a question and I don't know if someone could help me with it. I have 2 users on the Palo Alto firewall is a PA220 One of them that CLI superuser and I don't remember the password The other one I have access to is admindevice but it won't let me create users via the GUI I have tried to take a copy of the firewall configuration,...

ccortijo by L2 Linker
  • 2486 Views
  • 4 replies
  • 0 Likes

PA-3430 Oracle Session Drop

We have multiple application servers that need to go through the firewall to access different oracle database servers, but after the recent replacement of the PA-3430, one of the application servers accessing the Oracle database session is unstable, and the other application server accesses other Oracle database servers through the firewall. Suc...

  • 1588 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks