General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

In Wildfire how do we disable weak TLS ciphers?

Nessus scanning is picking up TCP/443 TLS v1.0 and v1.1 on our WildFire (WF-500) appliances.

Is there a way to turn off TLS v1.0 and v1.1 on the WildFire ?

Below is the Nessus scanner notification.

-------------------------------------------------

...

Resolved! When does the user cache disappear if the ldap integration is broken?

Hello all,

If the firewall loses LDAP integration, how long does the firewall have cache for USER information?

Thanks,

Resolved! What does No Direct access to Local Network actually do and when do we use it??

Team,

Can anyone please explain SIMPLY to me what the "No Direct access to Local Network " under Global Protect actually does and mostly when are supposed to use it?

This is so confusing to me. I know there is a KB for this but the KB seems to con

...

session end reason as 'Threat'

hello everyone,

Firewall is showing session end reason as 'Threat' in traffic logs for the traffic blocked under url filtering profile. this is showing repeatedly, i'm afraid is consuming the Data Plane CPU. IT could be the action of blocking or

...

User ID: Problems since updating PANOS and User ID Agent

About a month ago, I upgraded PAN-OS on our main PA-3050 HA cluster from 7.0.8 to 7.1.8. This also required an update of the User ID Agent I had installed on a Windows 2012 R2 server from a 6.0.x version to a 7.0.x version; I upgraded to version 7.0

...

Resolved! decryption rule

Hi Everyone,

I want know how we can check which decryption rule is being used for a particular traffic.

Thanks

Virender

Resolved! App-ID

Good Morning,

I am currently working with a PA 3220 firewall that has no licenses. Does App-ID work right out of the box without a license? On security policies I see under the ‘apps seen’ column it is identifying apps. If you use the apps found unde

...

Configure HA3 on a non HCSI interface for PA220

Hello Everyone,

Need to put my PA220s in active-active mode, I know they do not come with a HSCI port, can I use a normal Gigabit interface for my HA3 interface and just set them to HA?

Should I be worried about any stability or performance issue

...

Resolved! Certificate Error in GP

Hi Team,

I am getting below error while try to connect to GP.

When I am try to connect to the portal getting this error, any suggestions? before it was showing continue but not it is not showing.

Usually it will give the option to proceed

...

Issues with resolving Xsoar DNS Alias

Hello, I am hoping someone here may be able to guide me. My company is using Xsoar, and we are having an issue with resolving DNS alias for it. The servers resolve to an AWS url. Half the time it resolves the other half it does not. Even support.palo

...

Google captcha error

Most of the users are getting captcha error in google.com

Wondering why PA is not blocking such requests.

Will the DOS policy in PA help prevent such unlimited outbound queries?

Page says our systems have detected unusual traffic from your comput

...

Suitable Palo Alto Firewall

Hi everyone ,

I have an enterprise network and two simple outside networks that are connected to the enterprise network via Firewall. The enterprise network includes 50 windows users and 2 windows servers and storage. I intend to install a Palo Alto

...

Resolved! Explanation for why all applications are not available for PBF

Hi All,

Just wondering if anyone can explain why the application objects have thousands of objects, but when attempting to create a policy based forwarding rule for a specific app (in my example, ms-teams), it does not appear in the drop down options

...

Resolved! PANW Service Level descriptions

Hi,

Is there a resource that can provide the different Service Levels and descriptions for PANW services and products?

Thanks

Paloalto TAC support

Anyone here using Paloalto products happy with TAC support?

I do not use TAC often but it seems like there are not enough TAC engineers to provide support to customers. For example, every time I call into PAN phone support, the average wait time is

...