General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

How to generate this certificate - (Cortex XDR: Investigation and Response (EDU-262) - Assessment)

I recently passed the assessment directly in Palo Alto (Cortex XDR: Investigation and Response (EDU-262) - Assessment), but I haven't found where to download or how to generate this certificate. Do you know where in the portal I can get it?

Issue using ZTP and a PA-440

Hi all,

We are trying to deploy a PA-440 by ZTP. Everything works fine until the connection to Panorama.
PA-440 receives the Panorama IP adresses from the CSP. It autocommits the configuration.
After that, the PA-440 is able to connect to Panorama (p

...

Palo Alto Networks Approved

Resolved! Can I set NAC with Mac address or device information in Pan-OS?

I would like to set up NAC for people who bring personal laptops into the company.
Is it possible to control by linking Mac address and IP, or to assign IP only to authorized devices, or to enable network use?

Or, can you tell me how to use certificat

...

Palo Alto Networks Approved

loopback standing in for end device

hi,

my company has an extra pair of 820 firewalls. for practice i was thinking of setting up active-standby ha on them in lab environment. even though its a lab, my company doesnt have too many extra workstations or laptops lying around. so would a

...

Resolved! no disconnect button global protect

I have globalprotect version 4 and I have a connect button but no disconnect button. When its connected I just hit connect again to disconnect, is there a way to change this"

Palo Alto Networks Approved

Resolved! Active-Active" mode HA setup across different locations.

Hi Team,

Greetings,

We have a requirement like client want to know about the FW HA across different location in "Active-Active" mode.

For example, PA Model: PA-3430

What are requirements for having fw cluster spread across different GEO locations

...

conversion to advanced routing engine failed

Hi

I tried to convert to a advanced routing engine using built in script in version 10.2.4 (pa 440) it converted with the yellow status

after reboot I noticed that non of my static routes work and each static route now has an additional entry fo

...

Palo Alto Networks Approved

Resolved! No Free SWAP Memory PA-450

Hi guys,

We have a firewall that shows the free SWAP memory 0. Is this normal? It is a new installation and Genindex process seems to be normal. Here is the output of "show system resources":

admin@PA-450> show system resources top - 09:49:41 up 21 d...

GlobalProtect Client Auto Login Woes

Hello,

We are testing the GlobalProtect Client (version 1.2.2-14) and are experiencing an issue. We use Windows automatic login for some custom deployment tasks, but are experiencing odd behavior and possible bug.

With the AutoAdminLogon, DefaultUserna

...

Cortex XSOAR Community Request Approval

Hello,

how long does it takes request to be approved? I requested 30-day trial Monday in the morning. Still no reply on approval.

Palo Alto Networks Approved

Resolved! need auth code applied to serial number 01351002139

PA-220 Slow Response time connecting over ipsec tunnel to AWS.

I've read on here multiple posts, older and newer but I think part of my issue is that I'm new to this environment and I'm hoping for a bit of guidance. I took over 4 sites with PA-220 firewalls which were way out of date, I've just got them to 10.0.

...

Palo Alto Networks Approved

Global Protect PanGPS Service is Missing

Global Protect VPN is no connecting to the server and the PanGPS services is missing, I did the following procedure https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5eCAC&lang=en_US but it didn´t work, the Global Protect C

...

Cortex XDR Agent

Hi,

I'm noticing that Cortex Agent is giving me High RAM usage in all endpoint

Cortex XDR

Action and Session End Reason conflict when SSL decryption enabled

Hi,

SSL decryption was turned on for one of the inside servers. Although it looks good, but some of the logs are rather strange.

There are sessions like these:

Basically Action - Allow, Rule is hitting correct one (the one permitting the traffic), but

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

How to generate this certificate - (Cortex XDR: Investigation and Response (EDU-262) - Assessment)

Issue using ZTP and a PA-440

Resolved! Can I set NAC with Mac address or device information in Pan-OS?

loopback standing in for end device

Resolved! no disconnect button global protect

Resolved! Active-Active" mode HA setup across different locations.

conversion to advanced routing engine failed

Resolved! No Free SWAP Memory PA-450

GlobalProtect Client Auto Login Woes

Cortex XSOAR Community Request Approval

Resolved! need auth code applied to serial number 01351002139

PA-220 Slow Response time connecting over ipsec tunnel to AWS.

Global Protect PanGPS Service is Missing

Cortex XDR Agent

Action and Session End Reason conflict when SSL decryption enabled

IKEV2 w Cert - Wildcard peer for DN does not work.

Transferring assets from one CSP Tenant account to another

Proper "outside" interface configuration

Configuring Palo Firewall into an IDS

A question about ECMP

Re: MFA external provider question

Re: GlobalProtect 6.3.3

Re: SPARE device usage

Re: Upgrade path to 11.2.5 from 11.0.0 on a PA-410

Re: Global Protect application blank screen

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! Can I set NAC with Mac address or device information in Pan-OS?

Resolved! no disconnect button global protect

Resolved! Active-Active" mode HA setup across different locations.

Resolved! No Free SWAP Memory PA-450

Resolved! need auth code applied to serial number 01351002139