General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Palo Alto Networks Approved

Resolved! URL Filtering - Max URL Entries

Is there a limit to the number of URL entries allowed or is it only limited by hardware resources?

We are a school district, so the number of whitelisted/blacklisted URLs is substantial - probably near 1000.

We are currently running PANOS 10.2

...

Knowledge sharing: Palo Alto Free Workshops, Trainings and Trials and possible PCNSA/PCNSE training

As part of my "Knowledge sharing" series I decided to share to everyone interested in learning more about Palo Alto the following links.

1. The Palo Alto Demo Center, where there are workshops, demos, trials (You have 30 day trial on the Palo Alt

...

Palo Alto Networks Approved

Resolved! about Password complexity configuration

Hello,

I configured required password change period and post login count in password complexity on my firewall.

If admin login in post login count stage after required password change period expire

How can admin recognize expiration of his account pa

...

SSL Connect Error on SMTPS Settings

We have problem with SMTPS configuration on Palo alto Firewall

so we have the SMTPS Certificate and already inject to the firewall

Our users says that the certificate is the certificate CA and when we test the email connection, the firewall shows err

...

Resolved! PA-3410 : STP Block cannot be created

Hello all,

We have a PA-3050 configured with V-wire and are operating as STP Block on the uplink of Backbone_B.

We are going to replace PA-3050 with a new construction firewall, PA-3410.

STP block is not generated in the in-house LAB before deploymen

...

스크린샷 2022-09-26 오전 10.20.49.png

Related to Paloalto VM instance type change

Dear Team,

I have a question while testing.

If I'm wrong, anyone please feel free to leave a comment.

1. Check if an issue occurs in the service traffic processing part when changing the instance type
> Since there is no change in the settings,

...

Palo Alto Networks Approved

What are the limitations of Expedition Migration tool when migrating other vendors firewalls

Hi,

Can any one name the technical limitations of using Expedition tool for migrating to PAN.

Thanks and regards.

Resolved! PA-3410 Spanning tree cannot be generated

Hello all,

We have a PA-3050 configured with V-wire and are operating as STP Block on the uplink of Backbone_B.

We are going to replace PA-3050 with new construction equipment, PA-3410.

STP blocks are not generated in the in-house LAB before deploymen

...

WSL and SSL decryption

Hi guys. We have a number of developers that use Windows Subsystem for Linux (WSL) on their Windows clients, and there are a lot of URLs and services that will not work when we decrypt the traffic. Managing a decryption exclude list for them would be

...

Palo Alto Networks Approved

PA-5250 Migration to Virtual Appliance and EoL Status

Hello

I'm interested in the Palo Alto virtual or VM-series appliance that would be broadly equivalent to the PA-5250. I realise the product selection is best made based on requirements such as sessions security rules, dynamic ip addresses, security

...

DNS proxy errors

We are using PANOS 9.1 and latest DNS security. Any thoughts on these errors from proxy log? 172.16.1.1 and 172.16.1.3 are Microsoft AD DNS servers.Can these be effecting performance of traffic?

2020-02-17 08:30:23.583 +1100 Error: pan_dnsproxy_recv

...

Palo Alto Networks Approved

Resolved! Pan-OS database

Hi guys, greetings.

On of my customers asked me a simple question about palo alto database. How does it work internally? Is there any SQL database internal on PAN-OS? Should it be accessed by any external factor like APIs os something like that?

IPSEC tunnel not working post HA failover

Hello Friends,

We have Palo Alto firewalls (various models like 3050, 5220 and 3220) which are in HA (active-passive mode). IPSEC tunnels are working fine when traffic is on active gateway. The issue is, when we failover traffic on passive gateway,

...

HA Interfaces failover triggers

Hi All,

We currently have a pair of PA-5250 firewalls configured in active/passive. We have 4 port channel groups configured with the condition set to 'all'.

The question i have is we are using eth1/1 & eth1/2 as HA interfaces if one of these goe

...

Resolved! GlobalProtect Local LAN Printing

I have GlobalProtect running for machines when they are off the network. Is there anything that I need to setup that would allow them to be able to print to their local LANs even though the agent is connected back to the FW? I am currently testing

...

User

Count

Subject

Likes

Likes Count

7 Likes

6 Likes

5 Likes

3 Likes

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

Resolved! URL Filtering - Max URL Entries

Knowledge sharing: Palo Alto Free Workshops, Trainings and Trials and possible PCNSA/PCNSE training

Resolved! about Password complexity configuration

SSL Connect Error on SMTPS Settings

Resolved! PA-3410 : STP Block cannot be created

Related to Paloalto VM instance type change

What are the limitations of Expedition Migration tool when migrating other vendors firewalls

Resolved! PA-3410 Spanning tree cannot be generated

WSL and SSL decryption

PA-5250 Migration to Virtual Appliance and EoL Status

DNS proxy errors

Resolved! Pan-OS database

IPSEC tunnel not working post HA failover

HA Interfaces failover triggers

Resolved! GlobalProtect Local LAN Printing

GlobalProtect SAML Authentication Complete

how to generate an AWS Redis Auth code ?

How to validate Redis connection from vm-series on AWS ?

global counter tcp_case_2

IKEV2 w Cert - Wildcard peer for DN does not work.

Re: GlobalProtect 6.3.3

Re: GlobalProtect 6.3.3

Re: MFA external provider question

Re: GlobalProtect 6.3.3

Re: SPARE device usage

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! URL Filtering - Max URL Entries

Resolved! about Password complexity configuration

Resolved! PA-3410 : STP Block cannot be created

Resolved! PA-3410 Spanning tree cannot be generated

Resolved! Pan-OS database

Resolved! GlobalProtect Local LAN Printing