General Topics

Where to download update for PA-2050 for learning purposes.

I have been given a PA-2050 to play with, and get my hands dirty, learning PAN, etc.

Where do I go find the latest supported image for it? https://support.paloaltonetworks.com/Updates/SoftwareUpdates/ doesn't have the PA-2000 series listed. It has

...

Re: Welcome to LIVEcommunity! Start Here.

Olá @Marcos1991

Algo que pode testar é a liberação de portas de VPN udp, já precisei em algum momento utilizar-se disto.

https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/firewall-administration/reference-port-number-usage/ports-used-for-ips

...

Days remaining till password expires

Is there any way to see the number of days remaining until a users password expires?

User cannot connect to Global protect portal.

The error message on this users GP client says they have an issue with they're certificate. The helpdesk apparently installed a certificate but I am not sure which one or where exactly. Now its telling me it cant access the portal at all. I want to d

...

Last Fetched Message Failed to renew device certificate. Invalid request. Authentication failed

Hi,

I have PA-410 (10.3.2-h2 sw.ver)

showing error "Last Fetched MessageFailed to renew device certificate. Invalid request. Authentication failed" renue option not available .

any solution, please help me

Thanks ,

#PA-410

Bureau of india standard certificate AKA BIS certificate

Hi All,

Any folks aware of Bureau of india standard certificate AKA BIS certificate and do know where can i get it ?

Resolved! Is it possible to allow only one connection per user-ID in the Palo Alto firewall?

Basically, it is a state in which multiple users can be connected when User-ID is created.
How can I make this so that only one person can access a single User-ID?
You cannot build additional servers like LDAP, SAML, Kerberos, etc...

Resolved! Ping management interface

Hi Initial configuration is like the below. why we cannot ping 192.168.8.100 ? i would like to allow the firewall to be ping and accessed via https. Maybe it need to add some command . Anyone can provide some suggestion? Thank you

admin@PA-VM> conf

...

Global Protect on Linux not working

I've tried GP on both Ubuntu 22.04 and AlmaLinux.I got the GP app from University of Texas at Dallas.
Neither worked. I got a SSL Handshake error.
Anybody with a successful experience to share?

Cheers

Global Protect on Windows 11 Home edition ARM Processor

Hi,

I've installed Global Protect last version 6.1 omn Windows 11 Home Edition with ARM Processor. After insert the portal it stop to run. Anybody has found similar problem?

Resolved! DNS over TLS in 10.2.4

Hi All

it seems like late last year DNS over TLS feature has been added to Palo Alto firewalls

However I am having issues understanding where it needs to be configured, I did read the guides but still unclear

So my external dns is 1.1.1.1 and I

...

warning msg on CLI

Hi,

While logged into the CLI on our PAN-OS, received the following error messages:

2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c:112): nbuckets 100 is not power of 2!

2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c

...

Re: Welcome to LIVEcommunity! Start Here.

Olá @Marcos1991

Sobre as VPNs, as polices estão criadas para permitir comunicação entre as zonas de segurança? Há NAT de saída para "Internet"?

Vejas se estas docs lhe auxiliam:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00000

...

Changing interfaces

What are the steps to move the global protect VPN portal and gateway from one interface to another on the Palo Alto firewall? We are wanting to move it to it's own interface.

SSL inbound inspection

We want to apply inbound SSL inspection and our certificate from Digitcert and based on this document
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEZCA0
there is a note says "Because SSL certificate providers such as Ent

...

Discussions

Where to download update for PA-2050 for learning purposes.

Re: Welcome to LIVEcommunity! Start Here.

Days remaining till password expires

User cannot connect to Global protect portal.

Last Fetched Message Failed to renew device certificate. Invalid request. Authentication failed

Bureau of india standard certificate AKA BIS certificate

Resolved! Is it possible to allow only one connection per user-ID in the Palo Alto firewall?

Resolved! Ping management interface

Global Protect on Linux not working

Global Protect on Windows 11 Home edition ARM Processor

Resolved! DNS over TLS in 10.2.4

warning msg on CLI

Re: Welcome to LIVEcommunity! Start Here.

Changing interfaces

SSL inbound inspection

B2B VPN IKEv2 Fail with Amazon Private Cloud Peer

Help understanding Asymmetric Path issue

Can't import a certificate via XML API using C#

Unable to download new version

Edit personal information

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

CVE-2024-3400 IOC's

Re: Solution for "SSL decryption bypass for Anydesk"

Re: Failed to update content package

Re: Solution for "SSL decryption bypass for Anydesk"

Unlock your full community experience!

Resolved! Is it possible to allow only one connection per user-ID in the Palo Alto firewall?

Resolved! Ping management interface

Resolved! DNS over TLS in 10.2.4