General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

best way to add folders to malware whitelist

having read the document "Add a New Malware Security Profile", I am not clear as to best and properly entering a path to a folder properly.

this is a paragraph pulled out of the of the webpage.

+Add a file or folder.
Enter the path and press Ente

...

GlobalProtect SCEP NDES Dynamic Challenge Failure

Hi,

I have been attempting to get GlobalProtect configured with SCEP for many days without success. The issue I am facing occurs when I have the SCEP Challenge set to "Dynamic" under "Certificate Management" (on the firewall), which is what I am wan

...

Resolved! Set permanent IPSec VPN tunnel

Hello guys,

would you be so kind and help me with any function, which can set VPN tunnel as a permanent one? Because when tunnel is not using, it goes down and then it will not come up without push on our side.

So, maybe there is some function / alg

...

Global protect welcome page appears multiple time in an hour or so

I have listed two issues with the GP

1. Since I upgrade GP client to 6.0.3 welcome page appears multiple times in an hour or so. Please suggest if any solution

2. Also there is no GP client version yet which can fix the "Sophos AV date capture

...

Can I ask a msg as a public domain email address customer?

Resolved! Possible to have a web page presented for webistes where SSL decryption Doesnt work?

Hi All,

We use SSL inspection and sometimes we have to add websites to a custom url category for non inspection so the webpage can become visible. Is there an option to have the user presented with a webpage so IT staff will know that it's ssl inspec

...

EDL error web request failed to complete, error:28

Using EDL provided by https://saasedl.paloaltonetworks.com/ but getting error web request failed to complete, error:28

Please note you are posting a public message where community members and experts can provide assistance. Sharing private information...

Resolved! URL Overide SSL Cert

Palo Team,

For URL override, do you need to use an SSL Cert signed by an internal CA? Or can I use an SSL from a public authority like Go Daddy?

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRdCAK

Change the SSL/TLS server configuration to only allow strong key exchanges. Key exchanges should provide at least 112 bits of security, which translat

Ho w to disable Weak SSL/TLS Key Exchange on Palo Alto Firewall while connecting with Globa lProtect VPN

Resolved! suspicious user account and file in my system

Is this BOT or not ?

# cat /etc/passwd | grep trapsanalyzer1
trapsanalyzer1:x:993:990::/home/trapsanalyzer1:/usr/sbin/nologin

# chage -l trapsanalyzer1
Last password change : Jul 13, 2020
Password expires

...

Is Palo Alto firewall vulnerable to CVE-2022-42889 (Apache Commons Text Code)?

Hi,

Is Palo Alto firewall vulnerable to CVE-2022-42889 (Apache Commons Text Code)?

Regards,
BK

Resolved! PA-460

Hi Team,

Please share me the EOL and EOS link for all the device models. I dont see the model PA-460 in the below link.

https://www.paloaltonetworks.com/services/support/end-of-life-announcements/hardware-end-of-life-dates

Regards,

Sanjay S

...

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

best way to add folders to malware whitelist