General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Skype screensharing uses "u-meeting" app-id

Hi Guys, is it normal that Skype uses this u-meeting app-id every time user uses the screen sharing feature?
I tried to block this app-id and the screen sharing stops working.
Because I only allow app-ids listed on this article: https://knowledgebase.

...

PBF with ECMP Issue

Hello, i have question about PBF Using ECMP.

We have 3 ISP and using ECMP Setting with weight round robin and Symetric Return Settings

ISP A > 200

ISP B > 100

ISP C > 50

NAT we set like this

All User > ISP A

Using PBF for some IP Segment

Segment A to ISP

...

Inbound decryption seems to changed preferred order

Without decryption server preferred order comes out as this.

And after enabling decryption it appears as

Looks like PA is doing it. Is there a way to manually control this order on PA

Resolved! Unable to block ".iso" & ".txt" file download with File Blocking Profile

Hi Everyone,

I am unable to block the ".iso" & ".txt" file download with File Blocking Profile, I am able to block the rest of the files format.

same issue with HTTP and HTTPS traffic. I have enabled decryption for HTTPS traffic but still the same iss

...

No transmit/drop in capture

What are the reasons we don't see transmit or drop in capture and traffic log shows traffic is allowed to/from correct zones, and tcp as age-out in logs. Packets only show in receive/firewall stage. Alos checking flow basic, I do not see the packet a

...

Resolved! My Website has been tagged as Phishing-- Help!

After several hours, I have been unable to find a way to inquire about our small company's website being tagged as Phishing. This is going to cost me a large contract with a city municipality. Do I have to buy Palo Alto services to get it removed?

S

...

Application and services in security policy rules

Hi I have a question,

Following rule,

Application allowed- DNS,SSL,WEB-Browsing

Service allowed - TCP port 22

I understand DNS, SSL and Web-browsing would be allowed on port 22, but my question is SSH traffic would be allowed by this rule as I am

...

how to get the VM image of palo alto for practice.

Please advise how can i get the VMware VM image to practice.

when login to the portal getting the below

UnAuthorized Access

Your membership has expired or has not been approved, please contact Palo Alto Networks Support.

Resolved! High dataplane CPU

Last few days we have been experiencing high dp-cpu on all NPC simultaneously, specifically with flow_ctrl. The flow_ctrl process typically shows 3-10% CPU, but all of a sudden all NPC "DP slot x, dp 0 and 1" simultaneously jump to 30..50...80...100%

...

Panorama-shared objects

I am just setting up a panorama with 25 managed firewalls.

How can I have shared objects that are only shared between few firewalls but not all? My perimneter firewalls have huge number of objects which I would not like sharing with other remote firew

...

Resolved! UnAuthorized Access your membership has expired or has not been approved

Hi,

when I tried log in to the support portal I have facing issue UnAuthorized Access your membership has expired or has not been approved

is it anyone can help for this issue ?

Thanks

Resolved! SSL Cert replacement PA-VM

I need to replace an SSL certificate for 443 device access, but it isn't in the certificate list.

Whereabouts in the GUI do I find it?

Thanks.

Split Tunnel with Global Protect and cannot get to internet

Hello,

I have setup GP VPN and all works well. I can connect and everything works as needed.

The problem is when I check off No Direct Access to local Network the internet is not available and I can still access my local network?

We are using a PA-3200

...

Paloalto Support Potral issue

Hi,

I am facing an issue with when login support portal.

I have configured 2FA Methods to use Email, but it seems too slow to receive email.
The occurs page expired after I fill in the code.

I would like to change 2FA Methods to google auth,

Is there anyo

...

how does Support Portal 2FA cancel?

Get email authentication when logging in to the support site But I don't get an authentication mail.

Is the account locked because of too many attempts?

Does anyone know how to change or cancel 2FA settings?

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Resolved! Skype screensharing uses "u-meeting" app-id

PBF with ECMP Issue

Inbound decryption seems to changed preferred order

Resolved! Unable to block ".iso" & ".txt" file download with File Blocking Profile

No transmit/drop in capture

Resolved! My Website has been tagged as Phishing-- Help!

Application and services in security policy rules

how to get the VM image of palo alto for practice.

Resolved! High dataplane CPU

Panorama-shared objects

Resolved! UnAuthorized Access your membership has expired or has not been approved

Resolved! SSL Cert replacement PA-VM

Split Tunnel with Global Protect and cannot get to internet

Paloalto Support Potral issue

how does Support Portal 2FA cancel?

Understanding some counters from pow performance during high CPU troubleshooting

Code Recommendations

Global protect VPN server certificate error

Can a systems integrator benefit from taking the PCNSE exam?

Replace SFP Process

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: Allow all web addresses with .gov and .edu extensions

Re: Unable to Upgrade from 11.1.3 to 11.1.13

Re: Where does it show which Agent Config applied to a specific users' Global Protect session

Re: High availability Links on different locations

Unlock your full community experience!

Resolved! Skype screensharing uses "u-meeting" app-id

Resolved! Unable to block ".iso" & ".txt" file download with File Blocking Profile

Resolved! My Website has been tagged as Phishing-- Help!

Resolved! High dataplane CPU

Resolved! UnAuthorized Access your membership has expired or has not been approved

Resolved! SSL Cert replacement PA-VM