General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

warning msg on CLI

Hi,

While logged into the CLI on our PAN-OS, received the following error messages:

2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c:112): nbuckets 100 is not power of 2!

2016-07-20 12:17:16.783 +1000 Warning: pan_hash_init(pan_hash.c

...

Re: Welcome to LIVEcommunity! Start Here.

Olá @Marcos1991

Sobre as VPNs, as polices estão criadas para permitir comunicação entre as zonas de segurança? Há NAT de saída para "Internet"?

Vejas se estas docs lhe auxiliam:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00000

...

Changing interfaces

What are the steps to move the global protect VPN portal and gateway from one interface to another on the Palo Alto firewall? We are wanting to move it to it's own interface.

SSL inbound inspection

We want to apply inbound SSL inspection and our certificate from Digitcert and based on this document
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEZCA0
there is a note says "Because SSL certificate providers such as Ent

...

Re: Welcome to LIVEcommunity! Start Here.

Opa, estou conhecendo mais sobre Palo alto e estou com uma dificuldade para fechar vpn ipsec no meu LAB.
A vpn nao fecha.

PA-A
ETHERNET1/1
Local ip - 100.0.0.1/24
Peer - 30.0.0.1
Rede local - 10.0.5.0/24
Rede Remota - 10.0.4.0/24

----------------------------

...

Resolved! how configure a vlan with dhcp

I have configured my vlan in different ways with subinterfaces however I connect my switch or my laptop to the port and it doesn't work.

steps i followed:
1. Create subinterfaces and assign a segment to it.
2. Add these subinterfaces to the virtual rou

...

How to generate this certificate - (Cortex XDR: Investigation and Response (EDU-262) - Assessment)

I recently passed the assessment directly in Palo Alto (Cortex XDR: Investigation and Response (EDU-262) - Assessment), but I haven't found where to download or how to generate this certificate. Do you know where in the portal I can get it?

Issue using ZTP and a PA-440

Hi all,

We are trying to deploy a PA-440 by ZTP. Everything works fine until the connection to Panorama.
PA-440 receives the Panorama IP adresses from the CSP. It autocommits the configuration.
After that, the PA-440 is able to connect to Panorama (p

...

Resolved! Can I set NAC with Mac address or device information in Pan-OS?

I would like to set up NAC for people who bring personal laptops into the company.
Is it possible to control by linking Mac address and IP, or to assign IP only to authorized devices, or to enable network use?

Or, can you tell me how to use certificat

...

loopback standing in for end device

hi,

my company has an extra pair of 820 firewalls. for practice i was thinking of setting up active-standby ha on them in lab environment. even though its a lab, my company doesnt have too many extra workstations or laptops lying around. so would a

...

Resolved! no disconnect button global protect

I have globalprotect version 4 and I have a connect button but no disconnect button. When its connected I just hit connect again to disconnect, is there a way to change this"

Resolved! Active-Active" mode HA setup across different locations.

Hi Team,

Greetings,

We have a requirement like client want to know about the FW HA across different location in "Active-Active" mode.

For example, PA Model: PA-3430

What are requirements for having fw cluster spread across different GEO locations

...

conversion to advanced routing engine failed

Hi

I tried to convert to a advanced routing engine using built in script in version 10.2.4 (pa 440) it converted with the yellow status

after reboot I noticed that non of my static routes work and each static route now has an additional entry fo

...

Resolved! No Free SWAP Memory PA-450

Hi guys,

We have a firewall that shows the free SWAP memory 0. Is this normal? It is a new installation and Genindex process seems to be normal. Here is the output of "show system resources":

admin@PA-450> show system resources top - 09:49:41 up 21 d...

GlobalProtect Client Auto Login Woes

Hello,

We are testing the GlobalProtect Client (version 1.2.2-14) and are experiencing an issue. We use Windows automatic login for some custom deployment tasks, but are experiencing odd behavior and possible bug.

With the AutoAdminLogon, DefaultUserna

...

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free