General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Traffic Filter by Address Groups

Is it possible to create a traffic filter using an address group as the src or dst?

I have an address group with around 15 IPs in it that I would like to filter on in the traffic logs.

Resolved! how to check when the dataplane has restarted?

Hi All,..

how to check when the dataplane has restarted? what is the CLI command for the same?

Regards,

Gururaj

URL Filter coverage - PAN-DB versus Brightcloud

I'm still hesitating to switch over to PAN-DB because I have some concerns about URL coverage of the PAN-DB compared to BC. Has anyone some information about that ?

rgds Roland

Resolved! URL Filter update - users not seeing changes?

1. If a URL is incorrectly categorized, I submit a change to Brightcloud.

2. Brightcloud emails me the next day (or two) and says the change was accepted and is in the latest DB.

3. I confirm on Brightcloud's website that the URL is newly categorized

...

Resolved! Authenticating external users to firewall like Sonicwall?

Hi all,

I am configuring a PA-500 for a POC exercise with a customer who is currently using a Sonicwall.

While there are obviously other/better ways to accomplish this and I realize how silly this is, given the limited scope I'm presently working in, I

...

Resolved! Slow VPN throughput after update to 5.0.7

Hello Community

Has anyone recognized some performance issues (extremely slow ip-sec throughput, hanging sessions) after updating to 5.0.7

A Firewall reboot solves this issue, but it's coming up again after some days.

Many thanks

Hannes

Resolved! SSL VPN

Hi,

Noob question: Where is the guide for configuring SSL VPN? Can't find anything in the getting started or admin guides.

TIA

Stuart

Wildfire flow

Hi,

For the desicion flow of wildfire, where is the hash update and wildfire database update ? can someone tell the real place of both in that chart.

Document's very clear but it is written before subscription service was released.

WildFire Decision Flo

...

Resolved! Loopback Interfaces in VPNs

In my configs, I generally reference the actual egress interface on the PAN device. I have run across some configs where the original engineer tied the GP portal to a loopback interface which basically just pointed to the same IP tied to the egress i

...

PA-200 Multiple WANs

Hi,

I'm getting my second WAN line installed this week and need to integrate it into my current setup on my PA-200.

Ideally, I'd like the PA-200 to load balance between the two WAN interfaces so my initial thought is to add the new WAN interface into t

...

HA Questions

Hi all,

I have 2 simple questions:

Q1: proper procedure to physically move the standby firewall PA3020 connected to primary firewall within the same datacenter (need to power off and move)?

Q2: proper procedure to switch the primary to standby and stand

...

Resolved! pa200 ha

Im in the process of setting up a pair of pa200 for ha, ive read through the documentation but im not clear on a few things.

The PA200, if i do an update on the FW for either software of dynamic updates it uses the management port to do the work.

If I

...

Adding Multiple IP's to an External Interface

Hi,

We have 30 External IP addresses, what's the recommended method of adding more than one IP to an interface?

Thanks

NAT Help - Reaching DMZ Server via NAT

Hi,

I'm having an issue setting up my DMZ test environment. My set up is basic and is as follows (IP information is an example) --

e1/1 - Internet (1.1.1.160/28 - ISP assigned)
e1/2 - Internal (10.10.10.0/24)
e1/3 - DMZ (10.10.100.0/24)
DMZ Web Server (I

...

Resolved! Radius Vendor Specific Attributes (VSA)

All the Radius Vendor Specific Attributes (VSA) information I've found hasn't been updated. Do we have a new list if attributes available?