General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

IKE phase 1 not working

I'm trying to setup a site-to-site VPN between Palo 820 and a Cisco ASA.

I've checked the configs and both are matching OK with correct PSK. I've configured the proxy IDs accordingly. I don't have access to the Cisco ASA as this is on the customer

...

Symmetric Return Details - DNAT - PBF Out or PBF In return Symmetric

Hello Live Community, good evening, as always, thanks for the good vibes, the collaboration and your time.

One doubt, I have managed to validate this behavior associated to envi

...

Resolved! GlobalProtect Multiple Profile

Hello,

I Have question regarding GlobalProtect:

I have 1 virtual PaloAlto with configured GlobalProtect. I would like to configure 2 profile, 1 for my Staff, 2 for external peoples (Like connection profile on cisco anyconnect).

difference between th

...

3CX PBX behind a PAN-500

After about a week of trial and error, the Palo Alto Network engineers have told me that my PAN-500 does not support the 3CX phone system. I am told that a future feature request will resolve flow based NAT issue I am having with STUN traffic. Unfort

...

Resolved! Software warranty license removal

Hi Team,

Software warranty license is showing expired in licenses tab.

Is there any way to remove this option from PA license tab.

Regards

Venky

Will ADEM ever come for Local Networks?

Will ADEM every be available outside of prisma access? Wondering how local networks are handling testing (outside of using competitors)

Resolved! communication between 2 segments in 2 zones diferents

I have a problem to be able to communicate internally my different segments which are declared in two different interfaces and in different zones.

I dont use vlan's

Eth 1/6= WAN 141.201.78.43/27

Eth 1/8= LAN
10.144.3.19/26
10.144.3.64/26

Eth 1/4= L

...

Resolved! Allowing ms-update on app-default, File blocking PE and therefore no windows updates

Me again and file blocking per PA best practice (PE, multi-level, etc..) and allowing ms-update on application default. However the WSUS server is not able to download any updates and its classifying a PE file as a threat. The file in question is a

...

PA--820 Power Supply Voltage In (Vin) Voltage and Frequency Range

Hello,

I am looking for the exact specification of the PA-820 PSU Voltage and Frequency range, as I need to install the device in mobile asset where the ranges may fluctuate within certain parameters.

Due the environment that the units will be de

...

Query regarding the default state of FPGA on PA-3060: What's the output of the command "debug dataplane fpga state" running on PAN-OS 9.1.7 or above?

Dear Community Members,

I hope someone will be able to help me out to confirm the default FPGA states on the PA-3060 appliance and supply some additional info on this matter?

As per the knowledgebase article (CAN THE CONTENT INSPECTION PERFORM ONLY I

...

Resolved! PA-3260 FPGA aho and dfa software offload seams to be enabled by default on 10.1.x (10.1.6-h6)

I am trying to debug high dataplane cpu on 3260, and both aho and dfa is set to software, when disabling software offload (enabling hardware offload) the high dataplane cpu is a problem of the past we have gone from 75+ to 9-10 %. When we disable sof

...

Resolved! Cannot create a support account

So I have bought the Palo Alto Firewall Bundle in the AWS Marketplace and was registering a support account, but when I log in the I get the following message:

UnAuthorized Access

Your email address, **********, was not found in the support portal. Ple

...

Resolved! user id agent wmi broken after kb5023702 installed

Hi,

i installed the kb5023702 on my active directory, and it breaks the user-id mapping on palo alto with wmi.

I had to uninstall this kb to resolve this.

Do you have a solution for this bug ?
Thanks,
Regards

dhcp on L3 or Vlan interface

Using our pa firewall connected to our ISP modem (in bridge mode) its working fine. But I have a zone called guest that I want to have dhcp clients on that will be separate from my trust network. I want to be able to have those guests on DHCP from th

...

duplicate ipsec tunnels

Hello Comunity,

I have a weird issue, we upgrade a cluster to 10.1.5-h1 from a 9.1 version, after the upgrade on the gui i see all the ipsec tunnels duplicated for example i had an ipsec tunnel called vpn_consult, after the upgrade i had 2 ipsec tunn

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

IKE phase 1 not working

Symmetric Return Details - DNAT - PBF Out or PBF In return Symmetric

Resolved! GlobalProtect Multiple Profile

3CX PBX behind a PAN-500

Resolved! Software warranty license removal

Will ADEM ever come for Local Networks?

Resolved! communication between 2 segments in 2 zones diferents

Resolved! Allowing ms-update on app-default, File blocking PE and therefore no windows updates

PA--820 Power Supply Voltage In (Vin) Voltage and Frequency Range

Query regarding the default state of FPGA on PA-3060: What's the output of the command "debug dataplane fpga state" running on PAN-OS 9.1.7 or above?

Resolved! PA-3260 FPGA aho and dfa software offload seams to be enabled by default on 10.1.x (10.1.6-h6)

Resolved! Cannot create a support account

Resolved! user id agent wmi broken after kb5023702 installed

dhcp on L3 or Vlan interface

duplicate ipsec tunnels

Upgrade from version 10.2.7-h8 to 10.2.11-h2

IPSec setup with certificate

UNABLE TO PING MANAGEMENT INTERFACE FROM LAN

Site flagged as GRAYWARE Please Help!!

HA State is "not sycned" even though Sync Task is completed on Peer (Passive) Gerät)

Re: User ID agent not starting.

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Re: Sofware Upgrade broken? "An active license is required for this feature"

Re: Cannot see Dynamic IP lists

Recommended PAN-OS version

Unlock your full community experience!

Resolved! GlobalProtect Multiple Profile

Resolved! Software warranty license removal

Resolved! communication between 2 segments in 2 zones diferents

Resolved! Allowing ms-update on app-default, File blocking PE and therefore no windows updates

Resolved! PA-3260 FPGA aho and dfa software offload seams to be enabled by default on 10.1.x (10.1.6-h6)

Resolved! Cannot create a support account

Resolved! user id agent wmi broken after kb5023702 installed