UPDATE 11/8/23 11:43 a.m. EST:
LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.
Thank you again for your patience and stay tuned
...
We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!
This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl
...
Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Our techs often interface with Zenoss, and we have a mobile app that will let us view and interact with the alarms. The problem is we need to establish VPN access first. I also don't want to open the port for the world, and I can't allow a specific i
...
Has anyone used Powershell to interact with REST API on PA500?
When I use the Invoke-RestMethod cmdlet to try and generate a key, I get back an empty response. If I run the keygen through a browser, it successfully returns a key. Running 6.1.1.
PS C:>
...
Hi all,
I'm new to the Palo Alto's, having cut my teeth on Stonesoft, Checkpoint and Sophos.
One nice feature in those solutions was the ability to select an object (of any type) and be able to list everywhere that it was being used - from policies to
...
Hi Guys,
Just finding for options and thoughts to be honest...
We have a service called Cloudware which is almost like terminal servers. What we are seeing is that users using a browser from these servers are not identified on the PAN as it is not cov
...
Hi,
I'd like to implement qos traffic-shaping from our public wireless network to sites like apple's appstore or google's appstore.
When i look at the monitor screen of our palo, i only see ssl traffic. Do i need to decrypt the ssl traffic first so i c
...
I am looking to allow a single host on the outside to run an NMAP port scan. What can I do to allow this host to get an accurate picture from the outside without giving additional access that may skew the results? In addition I would need it to bypas
...
Hi,
Anyone know if I can run a “scp export logdb” on a PA-7050 and then restore this logdb via a “scp import logdb” on a VM-100 ?
I understand that this would override all existing logs on the VM-100 but that’s fine, I just want to make sure this would
...
we are seeing tunnel drop with below error message.
IKE phase-1 SA is deleted SA: 1.1.1.1[500]-2.2.2.2[500] cookie:191098e4ef6db35d:eba9ee89ff200b07
Hi guys,
We enabled LACP for an aggregated groups on our firewall, It seems we are receiving critical system logs from the passive node every 5 minutes that the LACP is down! All the interfaces are up and running on the active firewall, So the critica
...
I have a need for our employees to use LDAP in the authentication profile for VPN connectivity, but I also have outside third parties that need remote VPN connectivity as well. I want them to use local database user accounts. How can I do this? It se
...
Hi,
Captive Portal is used for all LAN (no Active directory)
we want to kill captive portal session when a client closes the browser.
Any idea ? (we can install scripts or etc. to computers, they are not visitor computers)
I have a specific question. Our firewalls are able to decompress some files like .zip or gzip and after that we are able to analyze their content and detect some malicious files with threat prevention or WildFire.
For the .cab file, the cabinet file c
...
We had a panorama VM upgrade recently to 6.0.8 with 4 cores CPU and 16 G memory.The moment it boots up the management CPU is always close to 100%.
Any one ran in to this problem or any suggestion would be helpful.
Hi guys,
Do you know how Palo Alto interpret the standard Syslog protocol severity;
RFC 5424 The Syslog Protocol
Numerical Severity
0 Emergency: system is unusable
1 Alert: action must be taken immediately
2 Critical: critica
...
PANOS : 5.0.11
Dynamic updates version:
Application version 487-2581 (02/17/15)
Threat version 487-2581 (02/17/15)
Antivirus version 1493-1968 (02/24/15
Customer's query is that whether the signatures include Kaspersky’s Botnet C&C URLs f
...
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
Raido_Rattameis
