This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4510 Views
  • 0 replies
  • 1 Likes

PA500 not being powered on for years refuses to boot...

Hi, The other day I powered up our #PA500 which has been stoiwed away for some years. I was able to do a factory reset by using CLI via the serial port However unortunately it refuses to boot correctly, yelling about not being able to start or activate the data plane. I have attached the CLI DMESG log and various screenshots from logfiles...

PAN-OS 11 interface counter descriptions

We've recently deployed PAN-OS 11.0.1-h2 in production on some PA-1400's (terrifying, I know). Practically, the firewalls seem to be functionally identical to the firewalls they're replacing. However, we've noticed that the "receive errors" counters are incrementing at a steady rate (3-5 per second). We believe the culprit to be the following ...

Resolved! PA-5400 Series Port HA1 Down every time there is an upgrade

Hi everyone, I found a problem every time we upgrade the PA-5420 firmware. After the device reboots, port HA1 is always down. I tried to find the relevant logs. It could not find any reason for this happening. Has anyone encountered this kind of problem? I want to know what is the root cause of this problem. We directly connect Active and Pass...

Resolved! BGP peering over virtual-wire interface

Hello, I have existing eBGP connection between 2 routers, layer3 connectivity is done with vlan going customer side and with /30 IP address they are peering. My question is that if i pass this BGP peering on Palo-Alto firewall with Virtual-Wire interfaces. Will I be able to see the prefix customer side of peer announcing or will I only see t...

Memmed by L0 Member
  • 2642 Views
  • 2 replies
  • 0 Likes

Resolved! Response status error code 403 while using api

Hello all. I'm trying to get started with some API work on my PAN OS. I walked through the Getting Started guide and I created a user, assigned an admin role to it that had API access, and then generated a key.While I am using curl -k -X GET "https://a.b.c.d/api/?type=op&cmd=<show><system><info></info></system>&...

ssovee by L2 Linker
  • 16455 Views
  • 4 replies
  • 1 Likes

ChatGPT and Chromium Browser issues

Hey all,Specific scenario here wondering if anyone else has seen so far. In our organization we have SSL Decrypt/Break and Inspect enabled using a self signed cert and SSL Forward Proxy. We have also implemented a custom Continue Response page just to acknowledge some risk of using ChatGPT. In FireFox and Safari, if a user navigates to cha...

Is there tool available to sync the config from physical Paloalto on-premise the disaster recovery site in Azure?

We have onpremise network and paloalto firewalls and zone base zero trust config and we want to have the DR in Azure on virtual firewalls and looking for the way to convert and sync the config from on-premise physical firewalls to Azure virtual firewalls. I know there are some magic need to be done to convert vlans to subnets/vnets and update al...

Facing packet dropping issue after imported configuration.

The issue is currently planning to migrate PA220 to PA440. We have imported the configuration file from PA220 to PA440, The network is down and facing packet drops Then we disabled the HA and disabled the ECMP configuration, but the same issue persists. We took a backup from PA220 and then imported it to PA440 after 6 hours we faced a packet d...

PAN-OS NGFW - LDAP Authentication via Group Membership - Admin UI

Hello, I'm trying to set up NGFW in a lab environment where all users have an account defined in a centralized authentication store. We're using FreeIPA, which provides authentication services via LDAP and Kerberos. I've gotten authentication working with LDAP, but it requires specifying a unique Administrator account and then pointing it to...

  • 1794 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks