If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
Anybody figured out a the magic combo to get Google Earth (Pro) not to warn on startup with SSL Decrypt? Before you ask "yes" SSL decrypt is working no errors or warnings in browsers (i.e. CA's in trust store) and yes I thought about the ICA issue a
...
Hello Bro,
We have subscribed to the Palo alto DNS-Security feature and we have it applied now.
after few days, I have a dynamic object now with many host has been sinkholed for contacting a malicious domains.
Many Domains contacted, what
...
Hi, Why anti-virus default profile is read-only? cannot modify the settings for default profile using superuser account.
Anyone can please advise, thanks!
Hello, how are you all, I hope you are well.
I would like to do the following:
In Fortinet is the following possible, DNAT, with Public IP example:
198.10.100.100:8081 ( alternate port ) ---DNAT-Mapping---Private IP destination 192.168.100.100:80 ( Por
Hello World,
I am simply attempting to setup a portal to where my guest are able to accept the terms of service in order to access the internet.
Is this possible with Palo Alto? I've done this on other vendor platforms and it wasn't rocket scien
...
Greetings all,
I feel like I'm probably missing something simple here, but I'm running into a decrypt-error issue on 8.1.3 in regards to a server that is negotiating DHE or ECDHE ciphers with the client. On Chrome I get:
ERR_SSL_VERSION_OR_CIPHER_MI
...
Recently migrate to a pair of 3200 series firewalls. Everything was fine and dandy until we powered them down to migrate to the correct rack. Once we powered them up, one came up fine, but the other has a green power light and nothing else. the fans
...
Upload SAML IdP Failed. No IDPSSODescriptor node found. Any ideas? Here's the file I'm trying to import
<md:EntityDescriptor entityID="http://www.okta.com/exk.....">
<md:IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn
Hello friends,
I am experimenting a strange behaviour.
When performing a manual failover with the command: request high-avaliability state suspend, the firewall that become passive continues sending traffic to the BGP peers for about 3 minutes (ICMP
...
Hello everyone,
I'm trying to implement the custom Captive Portal Response Page with custom images in it.
Is there a way to upload my own images to the Palo Alto to use them in the Captive Portal? I did found the info about using the custom images fro
...
Hello All,
I have two palo alto in high availiabilty running as Active-Passive mode. Basically i have to add these firewalls now in Panaroma which i will configure in High avalibility.
Need to know what are the precautions i have to do to add these f
...
Currently on the Palo Alto firewall, there are 4 IPSEC VPN Tunnels.
The issue is the following, a sub network of a Tunnel, tunnel that we will call TUNEL-A01, must be able to reach a destination that its destination is in another tunnel, we will call
Good Morning All,
I am trying to configure our minemeld system to use the new FS-ISAC STIX/TAXII feed but its giving me issues. Has anyone successfully configured Minemeld to pull information from FS-ISAC recently? I added a sample of the config setti
...
on:
ECMP Virtual Router restart question
on:
Are logs lost when log discarded (queue full) increases?
on:
netflow data without a collector
