General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

SMC SSD Failure Detection : Press F1 to Resume

I recently stumbled upon this error and found very little documentation on the subject that I only found after the fact. On the SMC of the 7000 series firewalls, there is a SSD. This SSD will fail over time. I found out when rebooting after an upgrad

...

Palo Alto Networks Approved

Resolved! No Super User to authorise my Support Portal account

Hello.

I need to download the PaloAlto Terminal Services user-id agent.

To download this agent, I need to have a PaloAlto Customer Support Portal account.

I went through the process of setting up a Support Portal account, using my device serial num

...

XSOAR - for an environment of 26 Palo Alto Firewalls + 4 PANORAMA - is it worth it?

XSOAR - for an environment of 26 Palo Alto Firewalls + 4 PANORAMA, is it worth it?

Hello, good evening to the community, thank you for your time and collaboration.

I have some doubts regarding some points, which is what a certain partner commente

...

Resolved! bgp neighbour state

Hi，Bro

The bgp neighbor GUI displays idle and the CLI is established. Is this a bug? Does anyone encounter the same problem? The customer's version is panos 10.1.6.

Palo Alto Networks Approved

Resolved! LSVPN running under mixed versions

I currently have my entire environment running on V9.1.15-h1. We currently plan to upgrade the data center VMs and 3220 to 10.1. These also will contain the GP portal and the LSVPN portal. With the firewalls (many 3020s) staying on v9.1.15-h1, wil

...

POC - To validate everything associated with Machine-Learning/Deep Learning PAN-OS - Features of URL Filtering, Wildfire, Threat Prevention Test

Setting up a POC - To validate everything associated with Machine-Learning/Deep Learning of PAN-OS - Features of URL Filtering, Wildfire, Threa Prevention Test.

-Hello Livecommunity, good afternoon, thank you for your time, for your collaboration,

...

Firewall Config Templates(network) not showing up in Panorama

Yesterday we had to reboot one of our firewalls that is managed by the panorama. After the reboot, we noticed that half the config is no longer showing in the panorama. Everything appears to be ok locally on the firewall (panorama pushed config and i

...

Palo Alto Networks Approved

Resolved! Can SAML Azure be used in an authentication sequence?

Some users need to be authenticated using MFA with SAML and azure, and some others need to be authenticated using SSO.

Can this be done using an authentication sequence?

Ike -generic event : vendor id payload ignored

We are seeing continous ike genric event for vendor id payload ignored , tunnel is up traffic getting encrypted and decrypted.

what exactly does above error say.

Palo Alto Networks Approved

Resolved! Given Tunnel Interface IP is wrong but still tunnel is up

I am seeing the Ip address give to the tunnel interface is wrong ( for the tunnel with AWS) , but tunnel came up and working without any issue.

Can anybody suggest on this. Would the IP address which we will give to the tunnel interface would not matt

...

Palo Alto Networks Approved

Resolved! Behavior of the 3 possible options -SIP flow with TCP - SIP TCP cleartext

Hello good afternoon everyone LiveCommunity.

For an environment with TCP-SIP with the ALG disabled at App "SIP" level and/or with AppOverride, I would understand that these options should no longer generate any noise, problem or unwanted b

...

Palo Alto Networks Approved

How to get/send DNS logs to on-prem SIEM -- DNS Proxy + DNS Security

Hello Community!

Wondering if anyone has this scenario / has experience with retrieving DNS security logs...

Remote Site Firewall setup:

- DNS Proxy Enabled (Rules direct internal domains to internal DNS servers across SDWAN, all other DNS request

...

SWITCHING PANORAMA VM FROM LEGACY MODE TO PANORAMA MODE failing

- We are trying to switch the Panorama device from Legacy mode to Panorama mode

SWITCHING PANORAMA VM FROM LEGACY MODE TO PANORAMA MODE

- https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPTzCAO

- Currently running on 8.1.x v

...

Palo Alto Networks Approved

Resolved! Network Throughput Graphs are incoherent in PA-220

Hi,

We are experiencing an issue with the PA-220 network graphs displayed in one of our sites.

We know that the router in front of the firewall delivers a 90 Mbps (Megabit per second) max throughput. This measure has been verified extensively.

...

Palo Alto Networks Approved

Resolved! Bring down IPsec tunnel manually

I am troubleshooting an issue where I need to bring down the IPsec tunnel manually, what is the best way to do this in GUI or CLI?

Thanks

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

SMC SSD Failure Detection : Press F1 to Resume

Resolved! No Super User to authorise my Support Portal account

XSOAR - for an environment of 26 Palo Alto Firewalls + 4 PANORAMA - is it worth it?

Resolved! bgp neighbour state

Resolved! LSVPN running under mixed versions

POC - To validate everything associated with Machine-Learning/Deep Learning PAN-OS - Features of URL Filtering, Wildfire, Threat Prevention Test

Firewall Config Templates(network) not showing up in Panorama

Resolved! Can SAML Azure be used in an authentication sequence?

Ike -generic event : vendor id payload ignored

Resolved! Given Tunnel Interface IP is wrong but still tunnel is up

Resolved! Behavior of the 3 possible options -SIP flow with TCP - SIP TCP cleartext

How to get/send DNS logs to on-prem SIEM -- DNS Proxy + DNS Security

SWITCHING PANORAMA VM FROM LEGACY MODE TO PANORAMA MODE failing

Resolved! Network Throughput Graphs are incoherent in PA-220

Resolved! Bring down IPsec tunnel manually

IKEV2 w Cert - Wildcard peer for DN does not work.

Transferring assets from one CSP Tenant account to another

Proper "outside" interface configuration

Configuring Palo Firewall into an IDS

A question about ECMP

Re: MFA external provider question

Re: GlobalProtect 6.3.3

Re: SPARE device usage

Re: Upgrade path to 11.2.5 from 11.0.0 on a PA-410

Re: Global Protect application blank screen

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! No Super User to authorise my Support Portal account

Resolved! bgp neighbour state

Resolved! LSVPN running under mixed versions

Resolved! Can SAML Azure be used in an authentication sequence?

Resolved! Given Tunnel Interface IP is wrong but still tunnel is up

Resolved! Behavior of the 3 possible options -SIP flow with TCP - SIP TCP cleartext

Resolved! Network Throughput Graphs are incoherent in PA-220

Resolved! Bring down IPsec tunnel manually