General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! what do people search ?

Hi,

Is there a way to track especially google searches from url filtering ?

From url filtering logs it cannot be seen the same url as a person visit when searches for a word.

we need search stats

Unknown Application Packet Capture

Hi

I want know about Unknown packet capture.

Q1. Where is unknown pcap stored?

[Device] > [Setup] > [Management] > [ Logging and Reporting Settings]

App Pkt Capture ?

Q2. I want know Unknown Pcap Usage.

Q3. When is capture unknown packet in PA packet flo

...

Resolved! Captive portal not redirecting for some users

Hi there

We've just enabled Captive Portal for all of our users but I'm getting a small number of users who are simply not being redirected to the captive portal to authenticate. I've noticed that Safari on Mac is a common theme but there are a number

...

Domain is pointed as Malware

Hello,

today we had a suspicious DNS Query warning because we tried to reslove a domain (pandaro.be).

So Palo Alto gets information about domains and checks some information about these domeains.

My questions about this:

1/ What is PA using to decide w

...

Resolved! link aggregation down

Hi,

We configured link aggregation but although switch side ports become up, on PaloAlto they are down.

Any idea ?

show interface ae1

--------------------------------------------------------------------------------

Name: ae1, ID: 48

Link status:

Runtime l

...

vpn issue

Hi,

After side to side vpn established correctly after sometime(I do not know how many hours) Phase1 becomes passive.Side1 cannot access Side2.

when we try to use test vpn command for ike it becomes up and it works.What can be reason for that ?

how do I assign multiple networks/subnets using only one physical interface?

I have an isp with 4 ip blocks then another with 3 ip blocks. I plug my 2 isp's in a switch then with only one cable from the switch to Palo Alto then from Palo Alto to my local network.

What I want to happen is that i can choose what isp i want to us

...

VWire configuration testing

Hi,

At a recent PA training, the instructor mentioned a testing method for testing the configuration of VWire objects and the traffic flow, as configured in your Security Policy. The goal of this method is the ability to do testing in a lab environme

...

App and Threat Version fail when update.

When I download and install (choose sync HA) the update App and Threat version 386-1889 (2013/07/30), Dashboard in my device show info App Version and Threat Version mismatch (view attach files). And when I commit any change, HA will not work (view a

...

Multiple ISP load balancing

We currently have an Internet setup as shown in the image below. ISP1 is Metro Ethernet running over a disparate fiber path at 100Mbps symmetrical bandwidth. ISP2 is ATM over 1Gb Fiber, with a disparate fiber path and 250Mbps symmetrical bandwidth

...

Resolved! ACC and filtering App Category or Sub Category

I couldn't find an answer after searching for a bit, so I thought I'd ask the community.

In the ACC tab within the PANOS web UI, if I select an application in the report, within the Application Information section that appears I get links for the App

...

Resolved! No exempt profile in threat details

Dear,

We have some traffic that is getting blocked because of a strict vulnerability profile.

I want to exempt a certain IP from this profile.

But when I click on details in the threat logs, there is nothing filled in the "Exempt profiles"

Which is stran

...

Resolved! NAT for ldap

I need to configure my PAN to allow LDAP and port 636 inbound from 10 specific IP addresses for authentication with a software company. Can't figure out how to do this correctly.

How to create custom vulnerability signature for SIP packets?

Hi,

we are trying to create custom vulnerability signature for triggering on the specific string in the udp packet payload with destination port 5060. Unfortunately there is no context for SIP. We used "Pattern Match" and chose "unknown -req-udp-pay

...

Resolved! Spoofed IP address zone protection of vwire

Dear,

We have created a zone protection profile with protection against "Spoofed IP address".

We have put this protection profile on a vwire interface.

Question:

What will happen since a vwire interface has no IPs?

Will this "feature" be ignored, or what

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help