General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

How deactivate multi factor authentication

Backline support not answering - how to raise a case with Palo Alto directly

We are supposed to have 24 x 7 support through Westcon but have been unable to contact them. Previously when emailing their support an autoresponder would reply with a ticket number. Not even this happens now. The AUS support number rings out.

Is

...

Resolved! Integration with Exchange Server Cortex XDR

Dears,

Is there have any plan on RoadMap about integration Cortex XDR with Exchange Server 2019? It will be great to determine attack vector in phishing

Cortex XDR

Replacing Cisco HSRP Pair with Palo in Active Standby - 2x ISP Transit BGP

Hi,

Currently we have a pair of Cisco routers each connected to a different ISP with static addresses. We have a public address range 203.x.x.x/24. The inside interfaces of these pair of routers are .2 and .3 of this public address range and the HR

...

Dectyption Issue

Dear Team!

I got a problem with Decryption on some websites. For example admin.microsoft.com. When I try to open this website, the web browser gives me a simple white blank without any content in it. In this case, decryption is on. I saw the error, d

...

Resolved! Telemetry error - CDL Receiver Key Empty

Hi All,

We have a client who all of a sudden started to receive the following telemetry error - 'CDL Receiver Key Empty' on PA-440. No changes have been made. Currently running PAN OS 10.1.2. They are not using CDL and are just sending Telemetry dat

...

Resolved! Palo Alto cluster questions

1. Palo Alto HA Sync links can be on different networks ?

HA1 seems not "The HA1 IP address for both peers must be on the same subnet if they are directly connected or are connected to the same switch." But like to confirm. I saw the gateway co

...

Resolved! Is it possible to re-send system logs to a syslog server

If this syslog server connection has been down, and I would like to send all previously unsent logs during that downtime to the syslog, is this possible?

Thanks in advance

Resolved! PA-3020 to PA-460 Migration

Hi All,

We are migrating one of our PA-3020 to PA-460 next Monday.

> PA-3020 is managed with the Panorama.

> Panorama is in the version 10.0.11 and the PA-3020 is in the version 8.1.18.

> Could you please help me with what all need to be considered

...

disk partitions in Panorama VM not being properly used

Dear Community,

I have added to Panorama VM (mode VMware ESXi) 3 extra disk units: 2TB, 2TB and 12TB.

The Panorama is acknowledging all the disk units and partitioned the 12TB unit in 6 x 2TB units, until here all good. But 4 of the partitions /

...

Bad Gateway Error when commiting with outputs

When I attemt to commit changes to Minemeld that include outputs using data from a local DB. Does anyone have any insight into what the Bad Gateway error signifies? I have attached a screenshot of the error message I am receiving.

Problems with updated cert on endpoints in relation to Global Protect.

Hi All,

We have ran into issues when updating certificates on end points and Global protect. Once the client machine tried to connect to GP its refused and referencing the old cert. Could this be some cache issue? Has anyone in the community ever e

...

brdagent restarted unexpectedly

Dear Team!

Hi once again.

The system goes into maintenance mode. But before the system goes maintenance mode, I faced that all traffic is in "Incomplete status."
After that, the firewall goes into maintenance mode.

After rebooting, all works correctl

...

False positives generated by alert Masquerading - 1396383840

Hi,

Is anyone else experiencing lots of false positives for the BIOC - Masquerading - 1396383840, specifically relating to signed Microsoft system 32 files and Chrome?

The files initiating the alerts are all signed, have not been modified for a

...

notepad ++ userdefined language

Hi All,

does anyone have a udl file for notepad ++ for panos that they use to do syntax highlighting?

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

How deactivate multi factor authentication

Backline support not answering - how to raise a case with Palo Alto directly

Resolved! Integration with Exchange Server Cortex XDR

Replacing Cisco HSRP Pair with Palo in Active Standby - 2x ISP Transit BGP

Dectyption Issue

Resolved! Telemetry error - CDL Receiver Key Empty

Resolved! Palo Alto cluster questions

Resolved! Is it possible to re-send system logs to a syslog server

Resolved! PA-3020 to PA-460 Migration

disk partitions in Panorama VM not being properly used

Bad Gateway Error when commiting with outputs

Problems with updated cert on endpoints in relation to Global Protect.

brdagent restarted unexpectedly

False positives generated by alert Masquerading - 1396383840

notepad ++ userdefined language

Can't find the "Republic of Kosovo" in the "Firewall Region Code Legend"

Device - certificate based authentication

Failover IPSEC tunnels with tunnel monitor keeps both tunnels active

Wildcard URL for Non-HTTP/HTTPS traffic

WEBUI Session Timing Out

Re: Allow all web addresses with .gov and .edu extensions

Re: Wildcard URL for Non-HTTP/HTTPS traffic

Re: Howto delete sub-interace from cli

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: How can I filter disabled rules in the 'policies'-tab

Unlock your full community experience!

Resolved! Integration with Exchange Server Cortex XDR

Resolved! Telemetry error - CDL Receiver Key Empty

Resolved! Palo Alto cluster questions

Resolved! Is it possible to re-send system logs to a syslog server

Resolved! PA-3020 to PA-460 Migration