General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 


In the past six


jforsythe by Community Team Member
  • 1 replies

For AD user password reset option

We have seen that whenever a domain password is  going to expire for the SSL VPN user, the Global Protect client on the user's system starts flashing a message that the password will expire soon. We want to know if there is any possibility to embed a

SurajN by L2 Linker
  • 2 replies

No Source User

After the .NET/User ID agent issue last week we upgraded the agents and managed to get our UserID mapping back so our firewall policies would work again.


At this point I have user > IP mapping, all of my agents are connected and my user based firewal


mmeehan by L2 Linker
  • 2 replies

Resolved! Global Protect pre-logon and user IP Pools

I'm wondering if anyone can help. We have global protect setup and i want to use the same IP Pool for pre-logon user's, and once authenticated have that same IP pool used for the user. So when i am setting this up in the client settings area of the G


Active Active High Availability

Hello Group,


I have done migration from Cisco ASA Firewalls to Palo Alto Firewalls.


In Cisco ASA Firewalls, I was using multi-context (there were two contexts, Context-A and Context-B). Context A was active on Firewall-1 and Context-B was active on F


Resolved! Access to Internal Web Site Through pfSense VPN

Hey Community:

I am in the process of rolling out GlobalProtect, but until I do, i have to continue to use a pfSense OpenVPN that was already in place before the Palo was deployed.


The problem I am running into when i connect to the pfSense VPN i cann


collector group with redundancy not working properly

we have configured Panorama M200 in HA , configured managed collector with local log collector , configured collector group and added local log collector of both panorama,  redundancy is enabled in collector group (log forwarding preference is not co


Deepak25 by L3 Networker
  • 8 replies

Resolved! disable redundancy in collector group

We want to disable redundancy in existing collector group configuration due to less available space for logging one year logs.


In our setup we have M200 in HA  and configured local log collector in both Panorama. Configured collector group and added


Deepak25 by L3 Networker
  • 2 replies

WF-500 Can custom Image

Hi Expert ,


I Would like to know about WF-500 can customer Image and Import to Appliance? Because the predefined image is not related to versions on the existing environments such as office and adobe.


Thank you



Log-Collector Issue with 10.x to 10.x

Hi Community,


I have a strange situation, maybe someone can help:

Panorama on 10.0.6, Firewalls mostly on 9.1.x.

We onboarded the 1st 10.0.5/6 firewalls and noticed, that we don't receive any logs within our dedicated log collector.

The collector group


Chacko42 by L4 Transporter
  • 1 replies

Unusual Issues in Hosted ESXI Environment

Hello folks,


Posting here as a final act of desperation. I am still pursuin the case with TAC, but I hope that perhaps someone will have seen something like this before.


Our network resides in a hosted ESXI environment provided by iLAND. We have an H


Resolved! PA-3220 - PAN-OS 9.1.9 - proxy_wait_pkt_drop

Hi community

This post is either to inform you about a possible problem and also to ask if someone already saw this and may be even has a solution.


Some days ago the global counter for proxy_wait_pkt_drop started to dramatically increase on a PA-32


Redundant Static Route through two IPSec Tunnels

Hello All,

I am attempting to setup primary and backup route to the same IP through two different IPSec tunnels. I have attempted both PBF and Static Route Path Monitoring and cant seem to get either to work, in both cases is because there is no IP as


IPSec Version

For audit purposes we neeed to know if paloalto is using IPSec version 3 or version 2?

Chana88 by L0 Member
  • 3 replies

Issue with correct FTP application detection

Hello Everyone!


We have a pair of PA-5260 (Panos 9.1.4) between 2 security zones serving primarily the traffic to a file buffer.

About 90% of the traffic is FTP  with server side being a load balancer IP.

With a small fraction of traffic we experience


Top Solution Authors
Top Liked Authors