General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Authentication error

users in one the gateway facing the error `please click the button below to relaunch authentication` while try to connect VPN .

How to filter routes being exported to BGP neighbor?

We are currently redistributing all OSPF routes to our BGP neighbor without any filtering. We wish to exclude certain prefixes from BGP advertisement. I need an assistance in configuring the filter for this purpose.

Q1. Is it going to be working

...

Palo alto GP with azure SAML

Hi, I was reading about the integration of Palo Alto GP with Azure SAML authentication.

My globalprotect is using port 4433 to access instead of the default 443.

Hence, I'm wondering what to configure for the identifier, a reply URL, and a sign-on UR

...

Need to suppress alerts that are getting generated as a result of adding a file execution in the restrictions

Hi Team,

We have added the file execution for Quickassist in restriction in XDR console but we dont want to get flooded with the alerts that are getting generated due to it. Is there any way that I could get restrict the file execution but also suppr

...

super user missing google authenticator problem

Hello
Google authenticator has been deleted on the phone of a user with super user privileges and cannot log in to sso.paloaltonetworks.com.
What method should we use to solve the problem?
Thanks

Commit Fail Phase1 sslvpn

hey

i am gtting commit fail on phase1 abort, and it looks like the SSL VPN proccess how can i troubleshoot it ?

show management-clients

Client PRI State Progress
-------------------------------------------------------------------------
routed 30 P1-abo

...

Resolved! Questions about EDL

Hello,

I have a firewall rule on the Internet Firewall list this

Source: Palo Alto Networks - High risk IP addresses - Palo Alto Networks - Known malicious IP addresses

Destination Any

Service Any

Action: drop

So if an ip inside the two EDL try t

...

Resolved! Panorama warning messages for EDLs with no certificate

I have several EDLs that were intentional configured to not use a certificate profile.

Is there a work around to hide the Panorama warning messages stating "External Dynamic List <edl> is configured with no certificate profile. Please select a cert

...

L2 trunks between 3 Cisco switches

THis was working in vwire just fine with two vwires.
1/1 to 1/3 vwire 1
1/5 to 1/6 vwire 2

Now we want to go to Layer 2, here is the configuration. I am only adding L2 sub interfaces to the firewall.
1st trunk:
--CISCO SW1 TRUNKED INTERFACE ALLOWING ONL

...

Resolved! Cortex XDR Agent DownGrade

hi Community,

Is there any way to downgrade the Cortex Agent from 8.3 to 8.2 via Console and as we cannot turn off Auto Upgrade isn't autoupgrade conflict with Downgrade

Resolved! Can I upgrade pan-os after support license expired?

Hi everyone,

Can I upgrade pan-os after support license expired? Anyone know that?

Exporting URL Filter objects/groups

Is there a way (CLI or WebUI) to export the URL Filtering objects and their details? We are looking to export the objects and their block/allow categories so we can put them in front of management.

Resolved! FW HA Version Update

Good afternoon team:
Could you support me on how is the HA version upgrade process?
First the passive fw? then the active one?

Greetings.

#paloaltoHA #update

Re: LIVEcommunity Registration and Login Assistance

Dear all,

How we get license use to test in vmware

Resolved! Newcomer Seeking Advice: Palo Alto Certification Path

Hi everyone,

I'm excited to join the Palo Alto community! My name is Abhi, and I'm eager to learn and grow my career in cybersecurity with Palo Alto Networks.

I currently hold AWS certifications and have a good foundation in networking. However, I'm

...