UPDATE 11/8/23 11:43 a.m. EST:
LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.
Thank you again for your patience and stay tuned
...
We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!
This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl
...
Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Is it possible to configure the bootp flag "Next server ip address" in the DHCP Server on a PA with 5.0.7 Software?
Hi All,
How SSH decryption works? what all the prerequisites? kindly provide example,..
Regards,
Gururaj
Hello everybody,
we have the following problem. We must allow dhcp-requests from outside to our dhcp-server. I will allow only those requests, that's contain a specific ip-address of a dhcp-relay and a specific mac-address of the dhcp-client. I have c
...
Hello!
Does the PA allows OSPF Inter-area filtering? If yes, how?
Thanks, M
Hi All
Vulnerability Protection add exceptions Action drop-all-packets exchange drop
But log see action still drop-all-packets not exchange drop
Why?
I am working with a client in an interesting situation..
We are basically needing to limit sections of the network where certain users and login to a web server. For example, only admins can login from zone1 and only users can login from zone2. The ap
...
Hi all,
We have an internal firewall that does not have no Internet access. I wonder what is the best way and best practice in updating the IPS / AV signature (no URL filtering).
Any recommendation?
Thanks
Is it possible to configure remote vpn client access without a Global Protect Gateway license? It seems that remote client vpn configuration depends on HIP Objects/ Profiles, which in-turn requires Global Protect licensing. Is there a way to configur
...
Hello all,
I have a (working) Global Protect Portal+Gateway envrionment. I am now trying to setup a gateway in a second datacenter. I have setup the same GP-cert and Client-Cert, cert_Profile and GP Gateway settings. The gateway works, when setting a
...
There has Dynamic Block Lists to block unwanted IPs.
And there has DNS signature in Anti Spyware profile.
Above are all helpful to block malicious sites.
And if I found a bad dns query, is there any way to create custom dns block lists?
(Think I know the answer to this already but...)
Panorama 4.1.14
We have a NAS that I would like to push automated exports to from Panorama. I would like to ftp export to a specific path (we don't use user Home paths) but can't seem to do it. Only the
...
I was hoping not to have to edit each rule separately. Does anyone know a way to do this?
We are seeing issues with Google ssl traffic being identified as Ultrasurf. Problem went away when we backed out the update (which included updates to the ultrasurf application definition). Ticket is into Support. May want to avoid updating to 396
...
Hey guys,
Anyone has had this issue with GP?
The PanGP virtual NIC is making a "connection verification" for "ages" and nothing happens.
I have made a workaround to solve this problem but would like to know what is the reason for it.
Of 100 clients, I ha
...
In our company we have two internet browsing profiles.
Users who belong to the AD Domain users have limited access to internet and users AD group belongs to UsuariosInternet can access anywhere.
My AD user is canopr and I have internet access from my P
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
Raido_Rattameis
