General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Cannot access peer device via Web UI or SSH

Hi All, It's unable to access the Peer firewall IP using Web UI or SSH. I'm able to access the Active device management interface and the HA status is also ok.

Resolved! Check the maximum number of permitted ip addresses

Dear Team,

I would like to know what is the limit on the number of 'permitted ip addresses' that can be set in Management Interface setting or Interface Management profile.

When I searched, there doesn't seem to be anything about that infor

...

Thermal Temperature Sensors PA5050 - 5250 - show system environmentals

Hello, good afternoon

I hope you are all well.

I have a question regarding the command output: show system environmentals

In the ----Thermal---- section the following appears:

PA-5050:
----Thermal----
Slot Description Alarm Degrees C Min C Max C
S

...

Looking for CLI command to view status of URL Admin Override Timeout

Looking for CLI command to view status of URL Admin Override Timeout, could someone please help me on this.

cli command to capture accepted traffic and dropped traffic.

Can someone help me with command to capture accepted and dropped traffic through cli or through webui interface of firewall.

I tried command show log traffic dst/src/sport/dport but looks like show log traffic in general does not provide good info.

H

...

PaloAlto Firewall CLI partial commit by object-xpaths

Hello,

I`m trying to include only single object into commit.

Web interface allows to exclude objects from commit:

On the first glance looks like CLI could provide such option:

USER@Device# commit partial
+ description Enter commit description
+ dev

...

Palo VM randomly stops forwarding traffic

Hi all,

I have a new Palo Alto VM-100 running in Proof of concept on version 9.0.2-h4

I'm using a virtual wire to protect servers against all kinds of attacks, malware etc

Yesterday evening for the first time, everything behind the firewall went down.

...

PCNSE Cyber Security Practice Lab

I am preparing for the PCNSE. The link to the CyberSecurity Practice Lab does not work. Can someone point me to the new location or an updated link?

Thank you

DHCP WAN nat to loopback interface for restricted management

Greetings!

Running Pan OS 10.2.3-h2

Is it possible the have DHCP on the WAN interface, Nat inbound traffic to a loopback interface that allows management?

The inbound security policy would restrict access based on set of FQDNs

Resolved! Apps Seen zero in panorama

Hi Team,

Why do my Panorama Security logs show Apps Seen as Zero??

Is there a way to see how many Address objects/groups I have?

Hello, all.

I'm trying to determine how many address objects and object groups I have across all of my VSYS on one of my platforms. I found the command to show the maximum allowed (see below), but not one that shows how many are currently there.

Is t

...

Resolved! Failed to validate server certificate for endpoint api.paloaltonetworks.com

All of my PA firewall is running PAN-OS 8.1.15-h3 and facing this issue below. Anyway, they are able to send log to Cortex Data Lake How can I resolved this error?

Resolved! Whitelisting IP Addresses

I am trying to whitelist some IP addresses. I added the IPs to our allow policy in the URL category section. Is there anything else that I should be doing? The purpose of this is to allow our printer providers servers so our printers can communicate

...

Prioritize Tunnel Static Route over L2 physical route

Hi,

I have an IPSec Tunnel between a remote central site and a PA-220.

This tunnel advertises it's remote internal network in 10.100.10.0/27.

A static route has been created in the PA with a metric > 1 (10), to route traffic in direction of

...

Resolved! Aggregate Interface with sub-interface

Dear all,

I am designing a new network for a client and they have lots of zones. my idea is to create an aggregate interface (ae1) and create sub-interfaces for the individual zone.

I read aggregate interface can be done on SD-WAN level and could n

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free