General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Session End Reason column NOT available on PA200

Hi All,

I am checking traffic logs under Monitor tab.

In order to troubleshoot issue and understand behavior of a specific traffic flow, I think "Session End Reason" column is really needed.

That's why I am writing on community.

We have two PA f

...

Two Factor Authentication over SSH

I have my Panorma appliance configured to use Radius with 2FA for the management interface and for the web interface that works great. It prompts for the one time password and authenticates. But when we try to SSH to the appliance we are not prompt

...

clear user-cache ip command

I know how to clear user to ip mapping using clear user-cache ip <ip address>,

I want to know how i can do it via Gui. I need to give access to one of the users to be able to perform this task.

About FSCK on Panorama

Hello

My customer use two M-100s.

One is used to Panorama and another is used to log-collector.

I upgraded two M-100s from 6.0.9 to 6.1.10.

I used manual upgraded way because environment what can not access to internet.

1. panorama was upgraded to

...

Resolved! How to activate new cert for GUI on 7.0?

Hi all,

On 6.1 and prior, I could choose 'Certificate for Secure Web GUI' under Device tab > Certificate Management > Certificate.

On 7.0, I can't find this option.

I generated SHA-2 self signed certifacate on the box.

Then, how can I use this ce

...

Resolved! Custom Captive Portal Agree to terms checkbox only?

I would like to setup a captive portal on my guest wifi, but I am not interested in capturing info for user ID, I just want to force the users to see a terms of use that they have to click through before connecting.

I have looked at the custom temp

...

multiple shared gateway deployment

Hello folks ,

I was wondering if multiple shared gateways (on one firewall ) is allowed . I found a matrix that was saying some PA models support up to 8 shared gateway but inside admn guide it tells us only one shared gateway is possible in the en

...

Drive Mapping with Global protect

Hi Community,

I just needed to run a niggling issue with some of you as we are experienicing with our global protect.

We have global protect to do pre-logon connection to the global protect gateway. Once the user is authenticated we except driv

...

Resolved! packet capturing pa

Hi,

in packet capture , what is actually firewall stage type ? .

Why thers is rx and tx separate ?

sorry for asking a fuzzy question ?

Thanks

How to properly configure POP3 AV and malware inspection

Dear Live Community,

I was wondering how I have ro configure pop3 traffic inspection in order to protect my network from malware and viruses in mails sent to me. My Linux server pulls various mail servers in the internet using fetchmail every coupl

...

Help with "Deny All, with whitelist of domains"

I have been trying to test out a new policy that will need to be implemented by our security team. This involves a Deny All rule, with a rule right above it that allows a list of domains. These domains include SaaS services, Cloud, and other domains

...

Resolved! Radius/TACACS Question

Is it possible with 6.1.x to where if a user wanted to change radius/tacacs password (before it expires or just because the want a new password) they can . Or if a user locks him/her self out and needs to change password. Is there a profile for th

...

Resolved! PA200 Failures

We started deploying Palo Alto in our environment about 6-7 months ago. We're up at 19 PA200s in production (we also use Panorama). Since we've been deploying these, I've had 6 units fail at 4 different sites. The failure is always the same, basic

...

URL Category

We use PA URL Category to block access to some sites i.e. Social media etc.

I would like to export all the category names and their respective settings block / allow / alert etc. to an Excel or Text file.

Can this be done, if so how

Blocking WORD docs which contain macros

In the course of a regular day, it is not uncommon to receive regular legit word documents from people via email. However, increasingly we are getting documents pretending to be resumes, and the .doc file contains macros. Our version of Word 2013 t

...

Discussions