General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Replacing a managed old hardware model with a new model

Hi,

I am going to replace my old 3020 9.0 panorama-managed firewalls with a pair of 5200 series FW. During the process I’ll need to change some of its network interfaces configurations with vpn tunnels on the new model. Would you advise to change the

...

Replacing 3020HA to 3220

Getting ready to replace a 3020 HA - Active/Standby to a single 3220.

Looking to see what the best steps to take and if there are any gotchas I should be on the lookout for.

Logic tells me; Make sure both are on the same OS code, export the running-c

...

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

how can i Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls.

And How can i Ensure all weak ciphers and protocols are disabled before exposing an application to the Internet in palo alto firewalls.

Deployment job upload wildfire to <fw> failed. Device msg:'Failed to download panupv2-all-wildfire-564367-567485.

Hi,

We get these error often, 'cannot connect to server'.

There are no network connectivity issues and everytime I test get the following:

Test wildfire Public Cloud

Testing cloud server wildfire.paloaltonetworks.com ...
wildfire registration: successful

...

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

I am new to learning Palo Alto Firewalls. I have a couple of PA-8.0.0 virtual machine instances setup on my desktop with internet access through my home network on a Windows 10 host machine, for learning purposes. I configured site-to-site vpn and

...

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

We have received below email alert from Secondary Panorama , what's the meaning of this critical severity event?

actionflags: 0x0
type: SYSTEM
subtype: ha
config_ver: 0
time_generated: 2021/06/04 10:22:37
high_res_timestamp: 2021-06-04T10:22:37.000+05:30
dg

...

Old Palo alto firewall || Demo PaloAlto firewall

Dear Team,

I am a big fan of PaloAlto firewall and i am working PA firewall science lase 4-5years. So i wants to create one Lab in my home and wants to share the free PA training over Youtube, already i have started the training with VM trail license

...

Integration of Palo Alto with Azure AD for authentication of users using SSO

Hi,

I have below requirement for providing access to users based upon using user-ids/AD groups in security policies.

1. These users are using Macbook and they login by using their email Ids for login into their machines.
2. Authentication of their log

...

Resolved! Maagment interface with custom port

Hi all,

Is there any way to change the management interface web access from default port(443) to custom port?

Please share your thoughts.

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

Hi guys,

Our customer want to block file over "Wechat-file-transfer" application. I searched on Application then seen "wechat-file-transfer" on Application database. But, I can not search any "wechat..." on application field on "File Blocking Profile"

...

downloads time out

Greetings,

i built a new dmz with a short list of apps allowed in (trust) out (untrust) and am having issues with downloads initiated using http(s)

seeing the download age out. i have allowed ssl and web-browsing and a few other apps....can anybody h

...

Reporting on Coin Miners

I would like to get a view on what crypto/coin mining activity is going on inside my network but there isn't an application category that covers this - they are just classified as internet-utility and have varying other attrributes. I can't create a

...

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone,

Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June.

This event will cover the following points related to the newly unveiled Zero Trust Network Security:

Secure access to the right app

...

Can we create a user group incluing another set of mapped user group from AD?

Hi All,

We have a challenge such that, there are around 100 mapped user groups from AD and we need to add them in a single rule. Is there any way we could add those user groups to another single user group and use it in the rule?

Thanks!

Pre-defines application not working ?

Apology for asking multiple question for the past one week..

We've define a policy to allow active-directory-base application which includes most of the AD standard ports, but the traffic is not hitting the policy, eventhough the destination ports ar

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Resolved! Replacing a managed old hardware model with a new model

Replacing 3020HA to 3220

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

Deployment job upload wildfire to <fw> failed. Device msg:'Failed to download panupv2-all-wildfire-564367-567485.

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

Old Palo alto firewall || Demo PaloAlto firewall

Integration of Palo Alto with Azure AD for authentication of users using SSO

Resolved! Maagment interface with custom port

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application

downloads time out

Reporting on Coin Miners

Happening in June: The Complete Zero Trust Network Security Event

Can we create a user group incluing another set of mapped user group from AD?

Pre-defines application not working ?

Upgrade from version 10.2.7-h8 to 10.2.11-h2

IPSec setup with certificate

UNABLE TO PING MANAGEMENT INTERFACE FROM LAN

Site flagged as GRAYWARE Please Help!!

HA State is "not sycned" even though Sync Task is completed on Peer (Passive) Gerät)

Re: User ID agent not starting.

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Re: Sofware Upgrade broken? "An active license is required for this feature"

Re: Cannot see Dynamic IP lists

Recommended PAN-OS version

Unlock your full community experience!

Resolved! Replacing a managed old hardware model with a new model

Resolved! Extract data of all ciphers and protocols that enabled or disabled in palo alto firewalls

Resolved! Site-to-Site VPN private subnets cannot ping eachother through the tunnel

Resolved! HA peer determined to be Active through managed devices; staying in Passive state

Resolved! Maagment interface with custom port

Resolved! File Blocking Profile - Can not block file-transfer over "Wechat-file-transfer" Application