General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Hardware refresh HA pair of 2050's to 3020's

I need to refresh some 2050's HA pairs for 3020 HA pairs. This shoud be a pretty simple prcedure but I cannot find any instructions on how to perform this upgrade. Beside the fact 2050's don't have dedicated HA interfaces, are there any other gotch

...

WAN Interface Not Registering MAC Address With Upstream L2 Switch

Hello folks, need some help here. After upgrading from 6.0.8 --> 6.1.0 --> 6.1.2, the WAN interface of the upgraded device, part of an HA-Pair in active-passive mode, does not register its MAC address with an upstream directly connected L2 switch.

...

Unused Rules

There is a feature to highlight unused rules. If a rule goes from used to unused does that feature show it as unused and if so how long does it take to show it as unused?

Resolved! Testing SSL Decryption (Cant use eicar.org due to symantec)

Any sites other that eicar.org I can use to test SSL decrption and response page? Due to symantec on 2012 server cant test using that site. Any recommendations will help

Telnet from the firewall.

I dont see any telnet option on the firewall. Wanted to telnet mail.com port 25 just to check connectivity.

Resolved! Home configuration PA-200 help

Hi guys,

Im new to this and im trying to install a pa-200 at home. I have managed to install it in a layer 2 configuration but i would like to install it now in a layer 3 configuration.

I have followed this article https://live.paloaltonetworks.com

...

Resolved! Send ICMP Unreachable panos7

Hello

What really is the purpose of using that checkbox in policy action with drop or reset ? What are benefits ? Thanks

Regards

Resolved! SSL Intercept

Hi all, before I head of and start configuring is it possible to test SSL Decrpyition in Vwire mode? I ahve a test server spun up in my lab and wanted to confirm

Threat prevention & Wild fire dynamic update issues

Any one having any issue with DNS with regard to a recent threat prevention and wildfire dynamic update?

Unused rules

Is it possible for a rule to show unused and be passing traffic? I disabled an unused rule and it seemed to affect traffic. I usually check it and it now show in the traffice monitor and it highlighted as unused. I also rebooted the firewall about a

...

Resolved! Using IPSEC tunnel as redundant link to a destination

Hello PAN Live Community,

I'm looking at having a redundant link to a given set of destination (servers) over an IPSEC tunnel when primary WAN link goes down.

What is the best way to do this ?

PBF ?

Resolved! Sinkhole Clarification

I have VWIRE setup rule is trust to untust (wide open rule to any) I added sinkhole profile to the rule. I also added a deny rule above for my sinkhole ip (53.53.53.53). I have my windows box pointing to .2.2.2 when I do nslookup on suspcisous s

...

Upgrade to 7.1.0

I upgraded our lab palo to 7.1.0 last night. Has anyone else upgraded anything in their enviornment yet? I don't plan on doing anything in our production enviornment until at least 7.1.1 or 7.1.2.

Not really having much time yet I don't have much

...

Resolved! Deployment software with 7.1: Cannot see firewall listed

Hi All,

After upgrade to 7.1, I cannot see firewall under:

I have this problem only with pan500, with 200 works properly.

Is that a bug or license issue?

Any kind of suggestion?

Best Regards

Luca

Resolved! group mapping issue

Hi all,

when try to Retrieve group include list getting below error :- Internal error. Please suggest.