General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Layer 2 vlan subinterface restriction?

Hello

I am using PA VM-50 and wonder if there is any restriction on the number of Layer 2 subinterfaces that I can create under 1 interface. I have more than 50 vlan subinterfaces created and the one I have added recently does not seem to pass traff

...

User-ID agent Alert

Hi,

As i have two user ID agent and both are working fine. Iam continuously received this alert on email please suggest

Resolved! Disk quotas add up to more than 100%

we are getting error: Disk quotas add up to more than 100% while committing any changes in panorama

Workstations no internet after receive IP from firewall DHCP Server

Hi,

We have a PaloAlto firewall which is connected to a Cisco switch and on this Cisco swtich an AP is connected.

On the firewall I use ethernet 1/2 port to handle the free wifi clients. This port is in Layer 3 mode.

This port is connected with the Cisc

...

Resolved! Firewall upgrades guidance

Hello we have a customer with central location acting as Datacenter with PA 3000 series. The panorama also stays in same DC.

All the other locations worldwide are connected to central DC over IPSEC tunnels.

Most of the firewalls running at remote sit

...

Resolved! high CPU (management plane) after enabling ECMP

Hello

We have an active/passive cluster (PA-820) which we use for IPSec tunnels (with 30 different partners).

One of the partners insisted on having a redundant connection using two IPSec tunnels with different peers. So we came up with the idea of en

...

Resolved! GlobalProtect monitoring

I need to graph GlobalProtect current users + traffic via SNMP. I cannot find anything in SNMPwalk or in the available MIBs.

I looked through some older discussions but it seems there is no immediate answer. Any update?

Thanks

Routing issues when using NAT over VPN

I'm looking at this document. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClipCAC
It says our selected NAT addresses (2.2.2.0/24 on PA-2020 in this case) need to be routed to a tunnel interface, in order for policy lookup

...

Customer Support Portal Inquiry: devices in assets under customer profile does not show the updated PANOS version.

Customer updated all devices to latest PANOS version after receiving the email for CVE-2021-3064. However, the PANOS versions for the devices are still showing the older version (8.1.6) in the customer support view. Customer can open each devices and

...

Session end reason threat traffic allow

Hi Everyone

we got the problem for session end reason “threat”, cause we detected the coin miner traffic through firewall and transmission to internet, even we saw the session end reason already hit to threat when the spyware traffic initially and

...

Resolved! PA220 upgrade to 10.0.x

hello

we have a customer with PA220 runing 8.1.8 and they want to upgrade to 10.0.8

I know 10.0 is supported on PA220 but is there any performance issue on PA220 for panOS 10.0.X LIKE slowness etc ?

Any guidelines if is it worth to upgrade to 10.0.X

...

Move Customer devices into our support portal

We have taken over an account. I need to move 4 firewalls for our customer from their existing support portal into our support portal. Can someone give me directions here to get started.

-Mark

Prevent Globalprotect from connecting when user on internal network

We want to prevent Globalprotect from connecting when user is on the internal network. We have the client set to manual connect/disconnect but users can be stupid and connect anyway.

We don't have an internal gateway, and dont want any ssl tunnel when

...

GlobalProtect on internal connection does not display loginID

Hello

We have a issue with global protect:

when a user logs in to globlal protect from the outside it shows the LoginID correctly, but when the user logs in internally it does not show the UserID.

Any idea why this is happening?

Thank you very much.

B

...

Resolved! lines under object name

Hello, community

Recently I've seen some object names with a line (check the attached image). Is there anyone that could help understand why this happening? What does it means?

Best Regards,

MrBraz

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free