General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

User activity report customization

I'm trying to create a user activity report for a machine used by multiple people. The manager wants to see what internet activity from this machine looks like, across three shifts (24 hour period). I can run the prebuilt User Activity Report against

...

how set the fan mode to auto

Hello;

I have a PA-500 firewall . I'd like to drops the noise of the fan :

I log on the device by the CLI and i wrote :

set system setting fan-mode auto

But a message said taht this command is invalid by the firewall . I follow also the admin guide o

...

Resolved! Authenticated email settings

Hi All, When setting up email server profiles how can use use an smtp server that requires authentication. For example GMAIL requires you to pass your gmail account in order to forward mail. Thanks

PA 500 doesn't show data, system logs nor application in GUI

I've posted screenshots of my issue. I can see logs in cli mode.

Resolved! EIGRP between routers sitting behind PA site to site VPN

I want to set up a site to site VPN tunnel between PA 3020 and PA 500 to replace existing Cisco equipment. The current equipment is uing EIGRP routing to fail over to VPN from MPLS using 1921 routers. If I put in PAs to handle the VPN traffic in fron

...

Resolved! Traffig Log database exceeds alarm threshold value(90%) of total allowed size (xxxx) Issue

Hello Community,

Actually I have an issue with traffic log alarm.

First, I want to know more related to traffic log works.

Actually the PA has assingned 32% (38.06 GB) of quota.

In the security rules the flag is check in the option "end the session

...

Palo Alto PA200 in L3 mode and PS4

Can anybody please tell me how to fix the NAT issue with the PS4?
Anybody had the issue before?

User-id not updating mappings fast enough

We have 2 user-agents deployed that read the AD logs and the PA7050's connect to the user-agents. The agents are running 6.0.7-10 and the PA7050's running 6.1.4.

We are having a problem where mulitple machines across various networks are using a "gene

...

Identifying files that were 'allowed' but are now known to be malicious

Wondering how others are tracking down files that were allowed through the firewall but later determined to be malicious (as a result of WF analysis)

Temperature sensor in PA-4020

Hi guys,

Is there anybody, who has PA-4020 with 6.1.x(perfect if it will be 6.1.5  )? I need some help.
First, could you please execute a command:
> show system environmentals thermal
and share the output?

Secondly, ask your box via snmp:
snmpwalk -v2c

...

Resolved! Block known bad TLDs?

My CISO want's to block known bad TLDs (such as .zip or .review) in our Palo. I know how to block specific url(s), but is there any way to block an entire TLD?

I'm running into issues blocking *.zip since it will also block legitimate URL traffic tha

...

New dates not available on reports-

When I go to monitor reports and click a report- I can't select any date after July - I created a custom report and can report on information that way but the included reports don't seem to be working. Any suggestions?

Resolved! Default Behavior of QoS

Hello All,
Quick question on the default behavior of QoS on the firewalls. Do interfaces on the firewall assume the QoS profile of "default" if I don't specify a QoS profile for the interface? The heart of my question is if I change the guarenteed a

...

Difference between soft lifetime and hard life time in IPSEC VPN

Could someone help me understand Difference between soft lifetime and hard life time in IPSEC VPN

6.1+ update stops tagged interfaces from working

I tried updating a PA3050 HA active/passive setup from 6.0.10 to 6.1 to eventually go to 7.
The update works for both devices, everything seems to be working like it should, except for the tagged subinterfaces of the aggregated interfaces. They simply

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

User activity report customization