General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

PA200 Android IKEv2/IPSEC PSK

Hi everyone,

I received an old Palo Alto PA200 firewall from a friend who works in networking, and I decided to set it up in my home lab to explore its interface and features. If I like how it performs, especially the monitoring capabilities, I might

...

Resolved! How to view administrative distance?

Hi everyone,

How would I see administrative distance of the routes in the routing table?

they seem to not be visible in the gui (more runtime stats) or via cli (show routing routes).

is there a special command or special area via gui I can see this

...

Resolved! Move firewall to new Panorama

Hi All,

We currently have 2 Panoramas (virtual) managing different firewalls.. We'd like to move all firewalls to 1 pano, so we can retire the other one. What's the best/safest way to accomplish that? Is there a way to avoid having duplicate obje

...

Do I need to deploy a switch between 2xPA firewall (Active-Passive) and 1xJuniper MX router ?

Do I need to deploy a switch between PA firewall (AP) and a Juniper Router in order to have an aggregate ethernet interface (AE) connected? Please refer to the diagram attached.

The setup is below:

PA-1 (A)-------------PA-2 (P)

|

...

CLI Rename Command Syntax - Rename GlobalProtect Gateway

Totally new to Palo Alto here. I'm looking to rename an existing GlobalProtect gateway on our PA-450.

I have found some posts indicating that this can be done from the CLI of the firewall by using the "rename" command from CLI to update the "GATEWA

...

Next update version available that supports 11.0.2-h2

I have the PA-1410 series. The software version has been updated to 11.0.2-h2.

When is the next available update version that follows 11.0.2-h2.

Thanks,

Resolved! Decrypt Gmail messages

Hello All,

Newby question here, is it possible to decrypt Gmail messages and actually see what a client sent via gmail? Some times there are investigations where we need to find out if an email was sent out from someone internally. We only receive

...

Nessus scan of FW2 failed - credentials were no provided for detected PAN-OS WebUI service

When performing a NESSUS scan of FW1, errors return:

Remote host was not identified as a known device or operating system and the execution of "uname -a" failed.

NESSUS returned the following error:

Enter old password:

This NESSUS scan works on t

...

Resolved! Query for routing table

Hello, everyone.

One query.

In Palo Alto Firewalls, what is the correct command in the CLI, to "validate" if I have or don't have a route, to reach a particular destination?

The correct command is "show routing route" or "show routing fib" ???

What i

...

Resolved! Reports not working multi-vsys PAN-OS 11.0.2

Hi,

There's a multi-vsys PA-460 with 10.0.2 and it has been noticed that since upgrade specific report is not generating - it is blank when received in e-mail daily. To be more specific, message:

There is no DAILY-SUMMARY-REPORT summary report on T

...

Dual ISP Ipsec/BGP tunnels to Azure

Has anyone created ISP failover for tunnels to Azure gateway?

We have PA440 devices with two ISPs configured. Local networks are switched with path monitoring if ISP1 goes down.

We want the same for the IPSec tunnel to Azure.

From Azure document

...

Palo Alto SNMP OIDs for Memory RAM use and Internal Storage use

Hello good afternoon community, please support, I need to monitor some information via SNMP, among them the RAM Memory and Internal Storage ( internal HDD ) of the Palo Alto Networks firewall.

Currently I already have the SNMP OIDs for Management P

...

Resolved! PAN-OS Certificate Expiration on Dec 31 2023

Hello, we have this error message when launching palo alto:

"Urgent Action required: PAN-OS Certificate Expiration on Dec 31 2023. For details, refer to the following Customer Advisory:

https://live.paloaltonetworks.com/t5/customer-advisories/emerg

...

Panorama to VM Firewall

Hi Team,

Is it mandatory to configure the Management Interface on firewall if we plan to manage the firewalls via Panorama?

I am trying to setup connection from the firewall to manage it over the Panorama but unable to get the connection.

Even TAC wa

...

Resolved! Gateway FQDNs Equivalent in Panorama managed SASE solution

Hi All,

I need to add additional gateways for Global Protect users in different locations. After adding how to check the newly added Gateway FQDNs in the Panorama managed Prisma SASE? Because i need those FQDNs to be added in Azure as Identity Provid

...

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

PA200 Android IKEv2/IPSEC PSK