UPDATE 11/8/23 11:43 a.m. EST:
LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.
Thank you again for your patience and stay tuned
...
We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!
This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl
...
Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
I am a beginner in the Palo Alto World.
I want to setup a Site2Site VPN to a customer.
The customer has a Palo Alto System running.
I cannot get the tunnel up.
The admin of the customer and me are troubleshooting the problems, but so far nothing is worki
...
Hello all,
i configured HA between paloalto peers , and HA failover as default without definig specifc interfaces and left it to "any"
when interface of inside zone shutdown from switch side , failover will not be trigered ? and need to fix it
This might be a naïve question. But how does it help me/organization going through every single app and marking it sanctioned, tolerated or unsactioned. It seems to me of no use, other than for the reports for executives, while apps still get allowed
...
My global protect VPN's tunnel interface does not have an IP assigned but I would like to assign it a fictitious IP to enable tunnel monitoring/ dynamic routing. will it cause any issues to the remote users? what role does this IP play in the tunnel
...
Hello
IM trying to modify one of template and create extra account. However i receive this error.
After upgrading, I can no longer login to the dedicated log collectors via the CLI or serial console.
Prior to the upgrade, and I mean just before, I did login via ssh to show system info and see I was at 8.1.6.
Right after the upgrade, my intention wa
...
Hey team hope someone can help me. I am pretty new to Palo and I am trying to setup Global Protect PreLogon in our corporate environment. I have managed to get it all working in the lab (awesome) now doing that in the live environment is different ba
...
Hello,
I am not a Network Engineer but am trying to assist the folks running the network at my company. I am in charge of Active Directory. The Network Engineers recently uninstalled the Palo Alto User-ID from two of my Domain Controllers. Since then
...
Hi,
I am in a task to change master key of a active standby pair.
I have followed all the instruction recommended by palo alto but while clicking "ok" after providing new key its getting invalid "candidate configuration.master key change aborted" erro
...
Hi Forum Folks,
is there a way to filter within PA BGP's all /32 networks ?
we have a community based connection to a customer and i want to prevent redistribution of *.*.*.*/31-32 networks
As far as i tried, i have to be very specific with such a fil
...
Hi,
In my team multiple users upgraded windows 7 to windows 10 after that VPN intermittent issue happened. every 5 seconds VPN(GP Clint) is disconnected. i tried uninstalled GP in mobile and also laptop but still same happened. latency is normal and t
...
I see on the following documentation page that only the CLI version of GlobalProtect is supported on Ubuntu 20.04, not the GUI version. Does anyone know when the GUI version wil be supported, or where I should look to find this information? Thanks!
I have followed https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/threat-prevention/set-up-file-blocking and created a file blocking profile to block Downloads of exe format while browsing. But it still does not block the exe downloads on the
...
Hi,
I have an issue with routing traffic over to a new DMZ SW implementation. Hope someone can crack the nut.
Issue : Palo Alto unable to route traffic into LACP trunked sub-interface vlans in VRFs
1. Each switch VRF is a Zone on the PA.
2. All routes de
...
Trying to set up ptp vpn between PA200 and corporate 5250. I haven't found a "How to set up if the PA200 is behind home modem" article as of yet. Is it my understanding that when I select the 5250 "Peer IP Address Type" = Dynamic it means that
...
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
Raido_Rattameis
