This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4510 Views
  • 0 replies
  • 1 Likes

Cloud NGFW App-ID Setting

I'm using the free version of Cloud NGFW for evaluation now. When I open the Applications (App-ID) configuration window in the Rulestack settings of Cloud NGFW, initially, the "Selected Applications" and "Depends On Applications" options were displayed. However, after a few days, these options no longer appear. Creating a new Rulestack did not r...

Ray1919_1-1691385239867.png
Ray1919_0-1691385221639.png
Ray1919 by L0 Member
  • 1240 Views
  • 0 replies
  • 0 Likes

Resolved! PaloAlto/Okta CaptivePortal Stopped Working

Hello! I've had PaloAlto/Okta captive portal authentication working for awhile now. I recently upgraded Okta to Okta Identity Engine, and also upgraded my PA to the latest 10.x.x version. One of those upgrades appears to have broken the Okta/PA integration. SP initiated authentications STILL WORK. IDP initiated authentications do NOT WORK - ...

After upgrading I am unable to perform dynamic and software update in palo alto firewall

Hi Everyone, After doing the upgrade I am unable to perform both the dynamic and software update manually. When I click the 'check now' option its keep-on loading. There is no error message. The palo alto firewall is not blocking the traffic. I am able to see that the packet is leaving the palo alto firewall. The firewall was using a managemen...

Resolved! PA-5220 downgraded to 8.1.24 after factory reset the admin account does not log in on the console port

PA-5220 came with PANOS 9.1 but the customer runs 8.1 on older Panorama gear. After downgrading PANOS they were setup and run successfully. The PA-5220 was reset to factory default for being deployed in a new location. After reboot waited 24 hours and still cannot log in with default admin account. Booted in to maintenance mode and found the ...

Upgrade 10.1.10-hx to 10.2.4-hx

Is there any good reason for me not to upgrade some 5220 series Firewalls from 10.1 to 10.2? One of the reasons I would sort of like to do this is to eventually get waste deep in some ML stuff. Will I break anything at this point? We are running GP 6.0.5 at the moment (about to jump to 6.0.7) as well.

birkhojk by L2 Linker
  • 1796 Views
  • 3 replies
  • 0 Likes

Static Routing with Path monitoring | Palo Alto Next Generation Firewall Routing

In the last few sections, we already discussed basic beginner configurations of the Palo Alto firewall, so in today’s session we will discuss how to configure Static Routing on Palo Alto and the topics below. · Static Routing in Palo Alto Firewall · Static route with path monitoring (IP SLA) · Two ISP Link redundancy Be...

ReadTech_0-1691087998101.png
ReadTech by L1 Bithead
  • 2065 Views
  • 0 replies
  • 0 Likes

NAT & its Types | U-Turn NAT | Static NAT | Dynamic IP NAT | NAPT

In a series of articles from Basic to advance Network Security, as today we will explain the topics Below. · NAT & its types · U-Turn NAT. What is NAT? NAT means translation of IP Address. Normally everyone understands that translation from private (non-routable) to public routable IP, but actually this translation can be b...

ReadTech_0-1691087727401.png
ReadTech by L1 Bithead
  • 5843 Views
  • 0 replies
  • 0 Likes

Resolved! In a DHCP environment, how can we grant certain users internet access via the Paloalto firewall?

We have over 200 users on a network, and IP addresses are assigned using DHCP. However, we have a customer request to allow internet access on ports 80 and 443 for specific individuals(may be 50 or more) via the Paloalto firewall. Please review and confirm the various configuration options.

shivunrp by L1 Bithead
  • 3122 Views
  • 5 replies
  • 0 Likes

Using AUX port as management port

Hello everybody, I'm configuring a pair of PA5250 in active/standby high availability mode. Since we have no RJ-45 ports on our switches, I would like to use one of the AUX ports as the management port in place of the default MGT RJ-45 port. We are using 10 Gbps SFP+ transceiver (long range, single mode fiber), and the AUX-1 configured as th...

grenzi by L3 Networker
  • 3606 Views
  • 3 replies
  • 0 Likes
  • 1794 Posts
  • 60 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks