General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Help License required for SD-WAN to function

The license has been applied to use the feature, but the following statement appears.

only one SD-WAN license.

There is no communication problem with the updates.paloaltonetworks.com server.

Discard UDP from Paloalto Session TImeout

Hello all,

Recently, customers are experiencing a phenomenon that Syslog traffic coming into the same source port remains in the Discarded Deny Session.

As a result of my checking, it was confirmed that it occurred while being constantly refreshed

...

I have a problem after rebooting a PA440. The device simply puts a message on the console that no bootable media has been found and then shows a BIOS-like menu with several entries (boot manager, system setup etc.). However, if I select

...

Resolved! Listed amount & type memory for PA-850

Maybe I am missing something but my security group requires the memory amount and type used for hardware devices prior to admittance on classified networks. I don't see a confirmed type and amount in any of the documentation. Was wondering if this wa

...

Allowed sites not loading correctly

I am new to Palo Alto Firewalls so I am trying to figure this out. In our policy we have facebook allowed and it is not displaying the whole page. Am I missing something?

Please note you are posting a public message where community members and expert...

P-A 220 Firewall - Basics

I recently joined a company that has some P-A 220 firewalls. I have access but for now it's "read-only" whilst I am learning, I am trying to find my way around the GUI web interface but even looking up a device by MAC address doesn't seem obvious.

...

Device certificate is not renewing automatically

Hi all, hoping someone may be able to assist with an issue.

We are seeing that every 3 months our PA device certificate is expiring which causes issues fetching updates from various cloud services (URL filtering, wildfire, update server etc).

Upo

...

Resolved! show url-cloud status - nothing returned

I am trying to get a basic url filtering profile setup.

I have cloned the existing default listing

I have applied the clone to my outbound policy

Nothing is being blocked, I can get everywhere!

My troubleshooting has then led me to the 'show url-

...

URL Filtering - Counter Termism Internet Referral Unit (CTIRU)

Hi All.

First post so hopefully in the right place.

We are using our 3220s for url filtering in our school. I have been asked to check if our filtering is including content from the UK CTIRU database. We make use of the Extremism category as part o

...

Resolved! What is "FIPS failure. Power-On Integrity Self Test Failure (FS)"?

My customers are facing critical issue when he upgrades firmware.

One customer is using VM-100, when he upgrades from 8.1.0 to 8.1.10 and reboot the device, he sees this issue.

Another customer is using PA-500, when he upgrades from 8.1.0 to 8.1.9-h4

...

Resolved! Cannot access peer device via Web UI or SSH

Hi All, It's unable to access the Peer firewall IP using Web UI or SSH. I'm able to access the Active device management interface and the HA status is also ok.

Resolved! Check the maximum number of permitted ip addresses

Dear Team,

I would like to know what is the limit on the number of 'permitted ip addresses' that can be set in Management Interface setting or Interface Management profile.

When I searched, there doesn't seem to be anything about that infor

...

Thermal Temperature Sensors PA5050 - 5250 - show system environmentals

Hello, good afternoon

I hope you are all well.

I have a question regarding the command output: show system environmentals

In the ----Thermal---- section the following appears:

PA-5050:
----Thermal----
Slot Description Alarm Degrees C Min C Max C
S

...

Looking for CLI command to view status of URL Admin Override Timeout

Looking for CLI command to view status of URL Admin Override Timeout, could someone please help me on this.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Masscan Detection

Help License required for SD-WAN to function

Discard UDP from Paloalto Session TImeout

PA440 not booting

Resolved! Listed amount & type memory for PA-850

Allowed sites not loading correctly

P-A 220 Firewall - Basics

Device certificate is not renewing automatically

Resolved! show url-cloud status - nothing returned

URL Filtering - Counter Termism Internet Referral Unit (CTIRU)

Resolved! What is "FIPS failure. Power-On Integrity Self Test Failure (FS)"?

Resolved! Cannot access peer device via Web UI or SSH

Resolved! Check the maximum number of permitted ip addresses

Thermal Temperature Sensors PA5050 - 5250 - show system environmentals

Looking for CLI command to view status of URL Admin Override Timeout

Palo Alto PAN-PA-220 setup at Satellite Location

About threatID action.

Activate vsys in FW HA and impact from Panorama

Does Palo Alto plan to offer on-prem versions of the DLP, OT discovery and Strata Cloud Manager for data sovereignty?

PAN-OS-PHP Combining actionss

Re: Palo Alto PAN-PA-220 setup at Satellite Location

Re: Activate vsys in FW HA and impact from Panorama

Re: PAN-OS 11.1.13 Predefined reports displaying IPv4 addresses in IPv6 format

Re: Does User ID Agent 10.2.4 compatible with PAN OS 11.1.13?

Re: Assistance with LDAP Authentication

Unlock your full community experience!

Resolved! Listed amount & type memory for PA-850

Resolved! show url-cloud status - nothing returned

Resolved! What is "FIPS failure. Power-On Integrity Self Test Failure (FS)"?

Resolved! Cannot access peer device via Web UI or SSH

Resolved! Check the maximum number of permitted ip addresses