General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Dual ISP Active/Active Best Practice?

Hi all,

We are in a situation now where we are trying to effectively configure our new dual ISP circuits in our primary location. Our initial thought was we would leverage these circuits using PBF and manually govern traffic flow. Ex: All video traff

...

VM300 Live Migration - MS HyperV S2D - MAC Address/ MAC Spoofing

We have a 4 node Hyper V S2D cluster with a single VM300 appliance. We have been able to successfully live migrate the VM from node to node without any issues.

We are in the process of modifying the North / South network fabric. I have successfully

...

Connect AC power adapter to PA 220 R

I have recently bought a PA 200R firewall and PWR-60W-AC Power supply but don't know where to connect the AC power source on the Firewall.

Can anyone help please ?

Resolved! NAT over IPSec tunnel.

hello all

I have an IPSEC tunnel with ASA(99.1.1.23<> 123.2.4.105), the tunnel is UP but the source client is not able to access the destination server.

The proxy ID on PA side is

local: 1.1.1.1

remote: 2.2.2.2

both sides are using nat for the client/se

...

Resolved! Global protect External gateway in remote user time format issue

In global protect I want to see the Total number of user are Login in and Log out at which time. In Global-protect Gateway when i click on remote user i see current and previous user connected to through VPN. When i fetch PDF/ CSV file. In file the

...

Resolved! How to give supply to PA220 R

We want to power on PA220 R , but it requires DC power supply.

Is there any options available in market to provide DC supply to this model ?

Can we use SMPS for DC supply ?

Can we get AD to DC power adapter from Palo Alto Networks ?

How to download the Report Latency, Jitter & Packet loss of last 3 Months

Hello Team,

We need your help to generate the report of latency, jitter, and packet loss of the last three months.

New GlobalProtect VPN connected but network connectivity lost after short time

Hi all,

Something must have gone wrong in my config I just don't know what. Here is the situation. This is a new setup on PA-820 we have the GlobalProtect license. Some users including myself will connect to the vpn fine, access resources on the n

...

ESXi Bootstrap Cant find init-cfg.txt

I'm testing out bootstrapping VM-Series firewall in ESXi. I've followed the documentation in relation to the bootstrap package etc. But for some reason when the firewall boots with the ISO I've created attached it complains that it cant find the init

...

IPsec tunnel connectivity issues

Hi, I have an IPsec Tunnel between 2 PA's and the status of tunnel and iKE shows red but the interface is green. Please advice on the troubleshooting steps.

Resolved! IPSec VPN phase2 partial up

hello everyone

I have a IPSec tunnel with Cisco ASA, and the proxy-id config is:

entry1: local 1.1.1.1 remote 2.2.2.2

entry2: local 1.1.1.1 remote 2.2.2.3

The very annoying things the phase2 is partial UP, when "show vpn flow", either entry1 is active

...

Backup and Restore PA Panorama and Firewalls setup to new infra in Azure

Hi friends,

Want to setup a parallel infra for current production environment where current configuration should be used in new VMs(Panorama and Two Firewalls) . How can we export only current security policies ,objects, and import to new setup (man

...

phase-2 sa purge mismatch SPI:0x00000000/0x07A04C1A

i am able to establish tunnel with vendor

can ping the vendor lan ip

but ikemgr shows

2019-05-02 13:01:54.000 -0600 [PWRN]: { : 94}: phase-2 sa purge mismatch SPI:0x00000000/0x07A04C1A.

VPN tunnel and NAT rules

I have to create a VPN tunnel between two businesses. The main objective is that company A needs to provide access to the following subnets to company B:

10.10.1.144/28

10.1.2.144/28

I've got all the tunnel info set up, and there is just a public IP

...

shared policy for device group context

Hi , can anyone help me to confirm whether we can create shared custom policy for dedicated device group context

Discussions

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

Discover LIVEcommunity Through Our New Animated Explainer Video!

Dual ISP Active/Active Best Practice?

VM300 Live Migration - MS HyperV S2D - MAC Address/ MAC Spoofing