Announcements

Discover LIVEcommunity — Watch Now

  • 475,639 Members
  • 2,906 Online
  • 234,197 Posts
  • 17,525 Solutions
  • 49,529 Likes

Welcome to Palo Alto Networks LIVEcommunity

Find answers, share solutions, and connect with peers and thought leaders from around the world.
New to LIVEcommunity? Check out our Welcome Guide.

Community Activity

How to sizing pro per gb

Hi Expert , I would like to know about how to sizing pro per gb i know about if would like size ngfw refer with sls-sizing-estimator and lps per model but it seems like when i calculate is a huge size i'm not sure how to actually size and another log source please adivse me . Thank you

MasterDevice Configuration

Hello PaloAlto engineer Team, I'm trying to configure the MasterDevice. Setting the MasterDevice to CIE doesn't mean the MasterDevice settings will be applied to Prisma Access or all devices in the device group, right? I understand that the MasterDevice just lets me know which device group the username will appear in the security policy. h...

VM-Series active/passive deployment over GitHub fails

Hello Community, I am currently trying to perform an HA deployment in Azure.To do this, I am using the ‘Azure HA Deployment’ via GitHub and the embedded link where I can then deploy the VM series in the Azure Portal. Here are the links to the topic: https://docs.paloaltonetworks.com/vm-series/11-1/vm-series-deployment/set-up-the-vm-series-fi...

Resolved! New periodic alert: Configuration size 19MB is above 80% of the maximum recommended configuration size 23MB for the platform.

Dear all, since a couple of days I'm getting alerts like: Configuration size 19MB is above 80% of the maximum recommended configuration size 23MB for the platform. Please consider removing unused configuration I removed all old auto saved configs after upgrades, and the config size looks ok:> show management-server last-committed config-s...

static route with path monitor down not removing BGP route

Hello, I am having issues with trying to get failover setup between vendor routers. We have vendor provided routers at our hub site and at one of our branch sites. We would like to have the traffic be routed to the branch vendor router in the event the hub vendor router is offline. I have setup a static route on the hub firewall to the hub vendo...

vendor-router-failover.jpg

How to configure pool.ntp.org or us.pool.ntp.org as ntp server

I configured them both using fqdn on the security policy with source as firewall management interface but ntp status shows rejected. How do I fix this. Please helpAll services to the internet use management interfaceDNS configured 1.1.1.1 and 8.8.8.8Firewall can ping 1.1.1.1 and 8.8.8.8Allowed application ntp and ntp baseI checked the monitor t...

USER ID -cloud NGFW Azure

Hi , Any one enable USER ID on cloud NGFW on azure and working smoothly in there environment? We tried POC in our environment but we are observing intermittent discussion between Palolo agent and Cloud NGFW azure which affecting its integration. We already opened TAC case but havent seen positive progress Thanks Sanil Hande

Global Protect VPN only on domain joined devices

Hello we are using SCM for our NGFWs and try to connect via Global Protect. Using Radius Auth we can login with any client/os we those, but we want only domain joined device (w11,ios,ipad) to be connected via VPN. Where we must configure SCM to look at M365 for company devices? Kind regards

R.Kniger by L0 Member
  • 102 Views
  • 3 replies
  • 0 Likes

Request for Documentation on VPN and Routing Log Events

Hello Everyone, I am looking for official or community documents that explain VPN and Routing system log events in detail on Palo Alto firewalls. Specifically, I’d like to: Understand the meaning of log events such as ikev2-nego-ike-start, ipsec-key-install, ikev2-recv-p2-delete, routed-BGP-peer-left-established, etc. See if there is a compl...

Resolved! About API keys when using the curl command

About API key issuanceWe understand that API keys are issued by executing the following curl command toward PA.curl -k -X GET 'https://<PA-Firewall-IP>/api/?type=keygen&user=<username>&password=<password> Regarding the issued API key, does a different API key get issued each time the command is executed?※Assuming that...

n-tomo by L1 Bithead
  • 931 Views
  • 5 replies
  • 0 Likes

Upcoming Fuel Events

Top Solution Authors
Top Liked Authors
Top Contributors

Latest from our Blog

Always Innovating In NetSec Series - July 2025

July has been a month of powerful innovation and customer impact across Network Security. From major product milestones to new services and customer-focused resources, we continue to deliver on our pr...

0 Comments