General Topics
Showing results for 
Search instead for 
Did you mean: 
We are conducting regularly scheduled maintenance over the weekend, which could cause some downtime on LIVEcommunity. We apologize for any inconvenience.
General Topics


Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 


In the past six


jforsythe by Community Team Member
  • 1 replies

Resolved! IPSEC tunnel is up but can not ping through


I have IPSEc ikev1 tunnel with vendor.

Phase 1 and 2 are up and green.


From PA   from my Lan interface when I ping remote lan subnet ping does not work.

I see no return traffic from vendor to PA.


IS this normal behaviour to have Phase 1 and 2 up but r


MP18 by Cyber Elite
  • 2 replies

Issue with PBF rule



We added a new VDSL Link on port 1/4 and created the PBF rule so that if the primary goes down, it will switch over to the backup. PBF rule is working fine and internet failover works okay.


However, customer accesses an internal Server across


Resolved! Palo Alto Updates Issue on Multi VSYS system

Hi All,


Hoping an answer can be provided to this multi vsys Palo Alto I am deploying.


I enabled the operational status of one of the virtual firewalls I am providing making it fully internet facing with Globalprotect operating on the outside interfac


a.jones by L3 Networker
  • 4 replies

Resolved! Error reading last checkpoint

Hi guys


I started experiencing this problem in MM 0.9.52, my MM engine was restarting continuously. I tought it was some bug related with this version so, with a little bit of stress, I updated to 0.9.60 (I'm using CentOs), but I still get the same b


Screenshot_2019-04-23 Problems with CentOs 7 and MM 0 9 52.png

Resolved! Best practice for OSPF

So i have a Pa850, it has lots of vlans off it.


1 vlan connect to the other OSPF routers. I have OSPF on there. But what about the other interface - is it better to add them as passive OSPF or redistribute connected ?



HA A/P: BGP routes synchronzation

Hi all,


I have a doubt regarding the synchronization of BGP routes learnt by the active firewall.

Reviewing the BGP route informationin in the active node with the following commands:

> show routing protocol bgp loc-rib

> show routing protocol bgp rib-o


Resolved! Blocking Google Games

Has anyone had any success in blocking the Google browser based games yet?  I have seen a few threads with no answers.


I'm going to bust out the Fiddler and see where it is going during this but I don't want to interfere with normal users and their G


palo alto website outages

Hi all,


Look, I don't want to tell the good people at Palo Alto how to do their jobs, but it would be great if they could push back online. I've been on hold for over an hour for basic information available


minemend service fails to start

I get the following error.  Please help!



:~# systemctl status minemeld.service
● minemeld.service - Process Monitoring and Control Daemon
Loaded: loaded (/lib/systemd/system/minemeld.service; enabled; vendor preset: enabled)
Active: failed (Result:


Nikhild by L1 Bithead
  • 0 replies

wrong report period while scheduling the report.

Hi Community,


I have a weekly scheduled report for saas usage (pre defined in PA) to an email running on my PA-3060, it was working fine. i upgraded the box to 8.1.7 recently, now i am noticing that the report period my report is for one week in 2015


EDL Notifications

Is it possible to create notifications when an EDL is refreshed? My security team would like to know so when they recieve the actual IP lists and URL lists that the PAN is getting updated at the same time. Thank you. 

Tecumseh by L0 Member
  • 1 replies

Resolved! Threat Vault and Virus/Win32.WGeneric.aalbaq

Hi all,


Curious if anyone can point me toward amplifying info regarding Threat Vault signatures? From what I can tell, these generic signatures usually tend to generate false positives. It's hard to investigate why the alert is getting triggered when


Top Solution Authors