General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

API - Fetching URLs from Custom URL object

Hi all, we have a Custom URL category object, WL-URLS, which contains a number of URLs for a whitelist policy.

I am looking to find some information on how to go about retrieving the URLs from this object via the XML API. My preference is the XML A

...

365 tenant restrictions problem with office365-enterprise-access

Noticed that a few of our enterprise logins that were previously identified as "office365-enterprise-access" are now being identified as "ms-office365-base". I've found an article explaining some of the issues. I know that this was working flawles

...

GlobalProtect and multiple AAD tenants

Hello -

We've set up a GlobalProtect portal and gateway to connect third-party individuals to our VPN. We've configured it to use SAML for authentication, leveraging an Azure Active Directory Enterprise Application that we have configured per the M

...

Entries in User-ID table show info pushed from XMLAPI never timeout

Hi guys,

My customer previously used XMLAPI to push User-ID info to Palo Alto but they now have an Aruba Clearpass appliance which will be handling all User-ID information via Syslog.

Due to software issues they cannot currently use XMLAPI between Clea

...

Resolved! New Anti-Spyware Signatures, false positives?

Hello,

The latest application and threat content update this week added a couple of new anti-spyware signatures:

medium

86759

AndroxGh0st Scanning Traffic Detection

spyware

alert

medium

86760

AndroxGh0st Scanning Traffic Detection

spyware

...

Resolved! The machine on which Cortex XDR agent is installed is not showing the Windows key (Start Menu) option.

How solve this problem.

Resolved! Certificate based Site to Site VPN (IKEv2)

Hello Folks, I am trying to build a site to site vpn between a Palo Alto firewall running 8.1.7 and a Checkpoint firewall. Settings are configured to use IKEv2 only with certificate based authentication.

While the logs below are from lab setup, but t

...

SSL Inspection and SSL Labs

Outside of minimum and maximum supported tls versions and ciphers what are some things to look for on SSL Labs that would be breaking decryption. In the Palo decryption logs if it shows error "Early close notify" what would be something to look for a

...

GP Compatibility on Windows Server

Hello, everyone.

Does anyone know if you can install the Global Protect agent, on Windows servers, such as 2012, 2016, 2019????

Is there a documentation that tells me and confirms this?

I see in the Palo Alto Firewall, that the computer does not give

...

Resolved! Is PA capable to scan for malware in Activesync/Outlook365 traffic?

Hi,

We have PA-850 appliances with Wildfire and AV licenses.

Recently we enabled the decryption of email traffic and now we are dealing with the data protection officer, he is asking us to detail what exactly is being inspected.

At first I thought al

...

SSL decryption - How to deal with third party sites that don't install the intermediate certificate?

I turned on TLS (let's start calling it what it is) decryption for our IT personnel only a couple of years ago. It was considered a pilot and I always planned to work with our legal department to craft a policy and start rolling it out to the broade

...

Next Hop in default route using DHCP Comcast modem

Hello Group,

I am setting up a PA-200 in my SOHO with comcast as my ISP. I have comcast for my isp and am using DHCP to optain my IP address. My question is this. Per the setup guide, if I check DHCP under the IPV4 tab, and check, Automatically cr

...

Factory Reset

I was in the middle of setting up a PA 850 and in the end needed to conduct a factory reset. I issued the commands to put into maint mode and was able to log in with maint@ip and the serial number as the password through putty. I had to step away for

...

Resolved! Minimum Code for PA-415/445

Hello, looking at the PA-415 for a small office and I can't seem to find the minimum code required. The datasheet shows performance results using OS 11.0 but there's nothing to indicate if you can use 10.2 code.

TIA!

DHCP client support for IPv6

Hi,

You can't configure an Ethernet Interface as a DHCP Client for IPv6 like the IPv4.
Does anyone know this will be supported in the (near) future?
I can't find anything about this.