General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 


In the past six


jforsythe by Community Team Member
  • 1 replies

Does Globalprotect support multicast traffic?

I have a scenario where the Radio equipment listens to multicast traffic on the network. Now that we have people working from home, we were wondering if the Radios can be placed on Globalprotect VPN and have the firewall route the multicast traffic.


Rules check by logs with expedition



For one of our client , using PA 850 in cluster,


They have 8 zones for voip , printer , camera etc


And all the security policies are wide open.


Now we want to restrict the policy by looking at logs from each zone towars other.


Can we export lo


Microsoft IP ranges and FQDN-s in outgoing rules

Hi all,

must be someone had similar thoughts too,

we have a customer who'd like to secure outgoing traffic, by specifying not only applications, but also restrict destination FQDN-s and/or IP ranges.

Issue with Microsoft is that their FQDN-s, and moreov


Goran_A by L0 Member
  • 1 replies

Palo DHCP Server

I have been having issues with DHCP server reservations on the panOS 10.x 


I make reservations and I have found some devices i made reservations for get other IP addresses at times and botches my policies. 


Anyone else have this issue?

Resolved! HIP profile for external Partners

Hello ;

We have to setup HIP profile check for  Corp users and external partners


Currently we have a common Loopback Interface having a Private IP and we have a tunnel interafce 


Both loopback and Tunnel are part of same zone called GP


This is same Cl


session disconnect during A-P failover



Can anyone suggest, if we failover from Active to Passive unit on PA firewall. will this maintains the established sessions by default. 


Or we have to additionally enable some other setting to make this enable (should maintain session during clus


Jimmy20 by L2 Linker
  • 2 replies

LSVPN - Contingency

Hi guys,

    I have one snario that have some satellites connecting each with Global Protect Portal (Large Scale VPN) and I need implement contingency. I was trying to create other portal, other gateway , PBF in the satellites to control default route


Password protected internal site

Hi everyone,


I'm trying to migrate a rule of an ancient firewall (Microsoft ISA server) that was "publishing" an internal resource using regular HTTP - just a web page - but protected by an RSA SecurID login page. The ISA / RSA implementation was jus


Rievax by L2 Linker
  • 4 replies

Resolved! Only Obtained from MindMeld Query

I have been using MeldMeld for several months in a lab environment with great success. Recently I setup a new server for our production firewalls but I have encountered a problem that I have not been able to solve.

I can query MindMeld using a regula


jnye by L1 Bithead
  • 6 replies

Resolved! Microsoft CERTSRV

Why does this have to be so difficult? 


I want to create a cert on the palo.  

Device > Certificate Management > Certificates > Generate

Highlight Generated Certificate > Export Certificate > Open with Notepad

Copy contents

Go to my Microsoft CERTSRV > R


Resolved! test security-policy-match command giving me odd output?

I was trying to work out which security policy applied to traffic through my Palo Alto from (in the trust zone) to

Firstly, I wanted to confirm what zone was in using this page :


Resolved! Polling JSON Format for AKAMAI

I am trying to create a prototype for a Miner that pulls IP's from a JSON formatted file. I have looked at the documentation for setting up a JSON miner (


Top Solution Authors
Top Liked Authors