General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

How to disable url update failure message

Hi All,

We don't buy URL License on our PA-2020 with PANOS 4.1.8, but we receive many url update failure message on PA-2020. Is there any way disabling url update?

Thanks.

Joy,

failed admin login attempt NOT recorded in system log

During a routine test, we found out if failed attempt login with the admin name as root via ssh or console will not record to system log, but failedd attempt login with other name via ssh or console will record to system log.

Question regarding unknown application behaviour

Lets say you configure a rule with:

Application = Any

Service = Custom Service (TCP port 12345)

Now when the AppID engine cannot match anything I guess it classifies the traffic as "unknown-tcp".

Will the traffic be allowed (because unknown-tcp is part o

...

Resolved! MDT and GP client

What's everyone using to deploy GP client? We're finding that because the GP client is not populated with any information(when downloading it from our PA firewall) it's causing problems with the MDT process. The MDT process stops as the GP client pop

...

Resolved! How to Fix - Error in getting locked users?

I have users locked out and yet when I go to Device > Authentication Profile is how this error in the Locked Users column "Error in getting locked users". What is cause and how do I fix it?

This has now come up fairly often.

System PA-2020 with 4.0.4

...

Assigning VPN User a Static IP

We have a customer who is running a specific thick application that requires the user to have the same IP address every time they attempt to authenticate to their servers. In the office this is not an issue since we can assign them a static IP and th

...

How to block upload dropbox with upstream proxy

Hi to all,

I have to implement a block dropbox upload.

The architecture that I have to provide the user network, the internal firewall Palo Alto, an external proxy, an external firewall, Internet.

I configured the various points to implement the block a

...

PanOS 4.1 - GlobalProtect portal client configuration failed

I am having a problem with my GlobalConnect configuration. Everything works fine when I have it set to On Demand. However, I have a set of users I want to effectively have the VPN always on, so for them I've created a second configuration but when

...

Resolved! Allow domain services through PAN 2050

I am trying to allow windows active directory services (2008 domain) through the firewall, in between zones. I have created my policy to allow the following applications:

active-directory

ms-ds-smb

msrpc

netbios-ss

dns

ms-win-dns

ms-wins

netbios-dg

ms-netlog

...

L3 vlans and devices/systems that don't support vlanning issue.

Hello all,

I've recently setup our PAN-2020's with L3 sub-interfaces presenting VLANS to our core switches (per this discussion: ). However, I've run into a problem that I can't manage or connect to devices, like our SAN, KVM, and even the PAN Firewa

...

Resolved! VPN for IPAD

Does somebody how to configure an IPAD in order I can use the VPN. I have it working for windows laptops, but not for an Ipad, I look the manual but honestly I need somebody else to explain step by step. Can someone help me?

Regards,

Resolved! What is used to convert Netscreen config to be imported into PaloAlto?

What is used to convert Netscreen config to be imported into PaloAlto?

Any chance of having automatic config backup option on the firewall (not Panorama) in the future

Heylo.. any chance of having the PAN firewall (not Panorama) do automatic backup of configurations as per time/date settings?

I am now having customers asking me if PAN have this somewhere down the line being implemented on the firewall.

Cheers..

Kalyan

Resolved! LDAP not working

I am trying to get my PA to talk to an LDAP server. I set up the LDAP server as described in the documentation User Identification Tech Note - PANOS 4.1.pdf) but it never is able to connect. I get this error:

ldap cfg mydomain failed to connect to s...

GlobalProtect Portal has a problem with DHCP Ext interface

I'm hoping that someone from PAN Support or Development can answer this question. I have been fighting with this for weeks now and have narrow the problem down to the GP Portal service.

Scenario

I have a PA-200 in my lab with two Layer3 interfaces def

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

How to disable url update failure message

failed admin login attempt NOT recorded in system log