General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 


In the past six


jforsythe by Community Team Member
  • 1 replies

combine more than two port for internet connections


I wish to understand how combining  more than two ports for internet connections works. I have configure four ports for internet connections with deferent speed. 

when I perform a seed test. I think, some result base one companying all port seed -


ehsunn by L0 Member
  • 3 replies

MineMeld - Memory Leak or Redis needing configured?

Build: Followed the Azure 16.04 LTM instructions


Problem: Every 3-4 days after increasing to 4 CPU's and 16 GB Memory the memory seems to creep up to the point of borking the instance.


WorkAround: Every 3 days restart the engine.


Context: Curre


Romans6 by L1 Bithead
  • 2 replies

Resolved! Adding a 2nd ISP

I have been reading up and still trying to wrap my head around the exact setup I need.


Current ISP1 - use for all LAN traffic out including IP phones. Use global protect also. Have external DNS setup so goes to this ip address. St


Resolved! Active Active HA3 Through EVPN/VXLAN

Have an Active/Active deployment, single firewall at each DC with EVPN/VXLAN through Juniper cores. Can we have the HA-3 link go through the core switches? We are using daa plane interfaces for HA-2, HA-2B, and HA-3. We have the vlans  stretched acro


Resolved! L3 ARP entries

Hello Mr.
            We need to make some mac address in Palo Alto L3 interface.
the question is that , How many manual arp entries can be added per single interface?
and because no document discussing it, I wanted to make sure if this works as an ARP

Shadow Rule Warning after upgrade

Hi All, 


We have a customer who has upgraded to 9.0 and they get shadow rule warnings since the upgrade.


All the shadowing rules are more generic with any/any for source and destination, but with source user restrictions.

The shadowed rules have more


Saml IDP certificate.

Hi Team,


We need to integrate Saml With Global Protect .We have done the saml configuration in azure perfectly fine.We have exported the metadata file from azure and inported in PA NGFW successfully.We need to achieve through IDP certifcate but the i


Global protect client stuck on connecting

Hi All - Global protect client for a few users is stuck on connecting state, is anyone able to help me look into


P 865-T24627 Mar 05 07:15:48:180208 Info ( 495): Server is trusted ***
P 865-T19203 Mar 05 07:15:48:445236 Inf


WildFire Analysis Exclusions? smbv3

Seeing a lot of false positives with WildFire for application ms-ds-smbv3, specifically for PE+MSDOCX files. Is there anyway to just exclude ONLY this application from our Wildfire? I'd really hate to have to create a 2nd WildFire Security Profile an


Rags by L2 Linker
  • 1 replies

NMAP Scan, PA show open ports

Hello experts!


When I scan my firewall from the internet no matter what I try I still get this.. 


53/tcp open domain syn-ack ttl 64
80/tcp open http syn-ack ttl 64
443/tcp open https syn-ack ttl 64
8080/tcp open http-proxy syn-a

BizBo by L2 Linker
  • 4 replies

Generate a Global Protect user report

hi there,

I have seen a few posts on this issue. but for some reason, I was unable to see the steps on how to do it.
I simply want to generate a daily report that will tell me how many users connected through global protect in the workday.
if someone ca


Arielpa by L0 Member
  • 1 replies

Resolved! Hold Music

I think you guys should be able to do better than a 10 second loop of the same thing.  I assume this is done to encourage people to hang up or leave a message as it slowly drives the caller insane.

Resolved! Special NAT configuration. Asking about possibility

I have a working Hub & Spoke VPN network. Computers in Spoke1 can reach the computers in Spoke2 and vice versa. 

For some reason, a particular device in Spoke2 with IP can only be reached by the computers in the same subnet. 

I want to kn


jeremylo by L3 Networker
  • 4 replies
Top Solution Authors
Top Liked Authors