General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Anyone having issues with PAN OS 4.0.7

We have been contemplating upgrading our 4.0.5 appliances to 4.0.7. Has any experienced any show stopper issues with this release yet?

Thanks.

Resolved! Importing Exported Logs

Once logs are exported to anFTP location, what is the procedure for importing them back into panorama? I was unable to locate mention of this in the admin guide.

Resolved! P-bit in type-7 LSA. OSPF NSSA.

Hi,

Is it possible to send OSPF LSA type-7 in a NSSA area with P-bit=1 ?

We are using PA as ASBR (just ASBR, no ABR) and redistributing some BGP route into OSPF. The prefix is send as expected as type-7 (NSSA Ext) :

admin@PA01(active)> show routing prot

...

How to Analyse threats

Hi all,

Can anybody suggest me how to analyse threats that's been alerted by Palo alto device.

What is the analysis approach?
Please advice.

Basic Question on Apps vs Service Relationships

I have attached a PDF that shows screenshots of the same rule, in four different variations.

I am trying to understand the relationships between using applications and traditional ports.

I have a server that has a static public IP NATed to the private

...

dns proxy - static entries

Hi

I have a dns proxy on one of my interfaces with some static entries, but nothing is resolved on the static ones - they should have a higher priority than the primary dns IP right?

Thanks

dns proxy - static entries

Hi

I have 8 static entries on one of my DNS-Proxy's but stopped working and when I show enties with

show dns-proxy static-entries all

It only shows one - GUI still shows them all

Thanks

PA-200 CPS vs Actual users

The specifications for the PA-200 show a CPS ( connections per second ) of 1000.

What number is generally agreed upon to calculate how many connections are actually used per user?

I've previously been told 50, which means all of 20 users being active a

...

Traffic logging stopped in PA4020

Traffic loging in my P4020 stopped yesterday. No new traffic log events after that. Command >debug log-receiver statistics is showing rising amount of Logs discarded (queue full), while Traffic logs written is constant.

Logging statistics
-----------

...

Panorama CLI questions

Had a couple of questions regarding some CLI commands for Panorama

Panorama version 4.1.0

Devices are a mix of 4.0.4, 4.0.7 and 4.1.0

Is there a way to update licensing information for the firewalls from the Panorama CLI

request batch license info shows

...

does session drop when changing VR?

I have an HA PAN scenario with single VR, after commiting a change to the default VR name then adding another VR to the system, I have noticed that some sessions droped.

Most of our sessions are opened one time and continue until service restart, if a

...

Multiple ISP's for Global Protect Client?

I've been messing with the setup of using multiple ISP's in an office and maintaining the functionaility of an inbound VPN client for both - aka redundancy.

I guess my first question is, can a client have a Global Protect installation that is able to

...

Key based ssh authentication?

Does anyone know if this is possible. Running 3.1.

Policy complexity considerations

When creating policies, especially Security and QoS, how much consideration do I have to give to the number of policies?

If we want to get very granular with these policies, will we pay any significant penalty in performance (either in device administ

...

Pan OS 4.1, Destination Nat Problems

Hallo,

I installed a PA500 wit Pan OS 4.1 at customer side and most thing working fine.

I configured the WAN interface as DHCP-Client with default route to this interface. In NAT-Rules i want to publish a internal server to give external sources acces

...

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

Anyone having issues with PAN OS 4.0.7

Resolved! Importing Exported Logs

Resolved! P-bit in type-7 LSA. OSPF NSSA.

How to Analyse threats

Basic Question on Apps vs Service Relationships

dns proxy - static entries

dns proxy - static entries

PA-200 CPS vs Actual users

Traffic logging stopped in PA4020

Panorama CLI questions

does session drop when changing VR?

Multiple ISP's for Global Protect Client?

Key based ssh authentication?

Policy complexity considerations

Pan OS 4.1, Destination Nat Problems

Client-to-Site IKEv2 IPSec without GlobalProtect

GlobalProtect SAML Authentication Complete

how to generate an AWS Redis Auth code ?

How to validate Redis connection from vm-series on AWS ?

global counter tcp_case_2

Re: GlobalProtect 6.3.3

Re: GlobalProtect 6.3.3

Re: Support PAN-OS Software Release Guidance

Re: MFA external provider question

Re: GlobalProtect 6.3.3

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! Importing Exported Logs

Resolved! P-bit in type-7 LSA. OSPF NSSA.