General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

How to set Portal address in Global Protect using powershell

Hi, I want to install Global protect using powershell. It gets installed but Portal address is not set by powershell, as it ask for manual input for that.

My code :

# Get full path of msiexec, which is more reliable than depending on PATH env var
$ms

...

Software NGFW renewal, more credits needed for same deployment profile

Hi all,

Last year I purchased 30 Software NGFW Credits for my PA-VM's in AWS. Of which I used 29.54 credits in a Deployment Profile.

This year I purchased again 30 credits to renew this Deployment Profile. However, I got a message:

'Failed to Renew D

...

PaloAlto Firewall App and URL Category mismatch

Hello Everyone,

In PA Firewall logs I am noticing the strange behaviour of the App and URL Category. I have blocked the social networking sites in the policy. But Facebook-based applications are categorized under any; sometimes it is categorized as

...

Resolved! URL set to allow Ransomware

Palo Team,

Can anyone please explain why Palo would release a Ransomware URL Category and put the default to allow????

Secondly, its going to be a pain logging into every single client of ours that uses Palo and changing Ransomware URL Category

...

Global protect disconnecting every 15 minutes after the panos upgrade from 10.1.5 to 10.1.6-H6

Kindly find the gp logs below seeing socket closed after waking up from modern standby. All the users irrespective of any gp versions are facing this issue, Any help in this regards will be appreciated:

Pasting pangps logs below:

P5164-T31512)Debug

...

9.1.14-h4 and subnet shared between multiple vSYS

Hello All,

We are checking a corner case design where we have PA-3220 firewall with 9.1.14-h4 software version. It has 2 vSYS enabled already and we have simple setup: ISP_Router ---- L2 Switch ---- Firewall. The question I have: is it possible to

...

Unable to manually upload PAN-OS software into the firewall getting "upload file size exceeds system limit error"

Hi Folks,

We have PA-410 deployed in our environment running on PAN-OS 10.1.2. We are unable to upload the PAN-OS software manually into the firewall getting the below error any thoughts on this

"Upload file size exceeds system limit"

We had c

...

Resolved! Global protect on the same interface with another public IP address

This is one of the requirements for globalProtect .

Already a globalProtect tunnel running an external interface with one public IP address.

Now want to create an additional globalProtect tunnel configure on the same interface with another public IP

...

Resolved! PPPoE session failed to connect for user:xxxx on interface:ethernet1/1. Reason: Timeout, LCP down

PA 440 firewall with the wan interface in pope mode.

When the firewall is in standalone the ppoe negotiation works fine.

If configure the firewall in cluster active-passive, an issue with PPoE negotiation with this message:

'PPPoE session failed to

...

Ha_agent.log error

Hello All,

I am getting this error in Ha_agent.log file on every firewall I check.

2022-08-17 18:36:13.962 +0500 debug: ha_sysd_config_status_notifier_callback(src/ha_sysd.c:2870): Ending monitor increase holdup on commit end
2022-08-17 18:36:13.9

...

Resolved! VM-Series - Migration from On-prem DC to Cloud

Hello

I have a question from a customer regarding the VM-Series.

My customer is interested in deploying a VM-Series appliance in the DC today but has a future requirement to migrate the protected application environment from the on-prem DC to pub

...

scan completes with partial success

I've been trying to scan an endpoint for malware but the scans complete with only partial success. Any ideas why that is?

Resolved! PA-460 Minimum Version of PAN

Hi Team,

We are migrating to the Model PA-460 from PA-3020. May i know minimum PAN OS version that can be run on PA-460. Also could you please confirm what OS version this device will be delivered usually?

Regards,

Sanjay S

PA Migration from 3050 to 5220 Appliances

Seeking a little bit of advice with an upcoming Migration we are performing.

We currently have an HA pair of PA-3050's that are being managed within Panorama (M-200). This HA Pair, is one of (2) Perimeter Firewalls we have in place going to our IS

...

service custom interface as a DHCP

Hello guys.

The MGMT IP is the default

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PP9uCAG
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Clp3CAC

I set the same settings after looking at the

...

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free