General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Resolved! Major flaw in Panorama: can't configure anything without a real firewall added!

1. Create a Template. Add some network interfaces and zones and related stuff to it. 2. Create a Device Group. Add some Address Objects to it, that you'll be referenceing in your Security/NAT Policies later. 3. Try to create a Security/NAT Policy ... and notice how none of your Zones are available! There's nothing in Panorama that links Tem...

Traffic Question

Hello everyone, I am seeing a strange issue that I haven't come across before and I'm not sure how to troubleshoot it. To make it as simple as I can, sometimes traffic going to a specific destination isn't using the defined OSPF route. So for example, the destination is 10.50.0.0/16 and OSPF is enabled on the virtual router using a specific t...

Correlation log subtype action always allowed?

Is the correlation log_subtype action always allowed? It creates a bit of confusion when the action on the actual event was blocked, but the correlation action shows allowed. Just looking for clarification.

Problem with exporting APP-ID list with all filter options

So. I have found a way to export app-id data from my Palo alto fw (From: Object > Applications) into a CSV format.I see on top the following filters: category; subcategory; risk; tags; characteristicHowever I am missing the Characteristic filter in my spreadsheet. Is there a way to get a column or some alternative which will allow me to filte...

Resolved! PA-VM-100 No traffic logging

Hi,I have just installed VM Series and configured it. Traffic goes through, rules are working but there is no logs in the monitor page.I haven't installed the license yet because I want to be sure that I want to keep it as I configured and without errors.I will try to provide more details;PA Version: 6.0.0VM version: ESXi: 5.1 vSphere:5.1 vCente...

Blocking Google Games !

Has anyone had any success in blocking the Google browser based games yet? I have seen a few threads with no answers. I'm going to bust out the Fiddler and see where it is going during this but I don't want to interfere with normal users and their Google searches. I was thinking there would be an app-id for it but I may have to find domain name ...

In the traffic logs the users disappear from the assigned policies

Hi team We are having problems with user groups in the policies. When we see the logs in the users section it is blank after a while the users can be seen. Take the tsf out of the high pole and checking the authentication logs, no connection problems were observed.In the user-id logs I could see the following: Error: pan_user_id_win_sess_query (...

Resolved! Downgrade path from 9.04 to 8.1.6

Hi, what is the downgrade path from v9.04 to 8.1.16? can downgrade from 9.04 to 8.16 directly? or 9.04 --> 9.0 --> 8.16 ? or 9.04 -> 9.0 -> 8.1.0 -> 8.1.16? Please advise, thanks a lot in advance!

Panorama shared object rename bug?

Panorama 9.1.4. I'm sure this is a bug... When a shared and device-group specific object with the same name exist, renaming the shared object updates references in the child device-group resulting in those objects (policies, profiles, address-groups, whatever) inheriting the shared object value instead of the DG-specific one. This should not hap...

Resolved! static route issue

Dear community, after upgrading our PA220 to PAN-OS 9.0 our static routes are not working anymore and during a commit we recieve the error massage Static route default_route_to_WAN next hop IP 192.168.100.254 is not in subnet of outgoing interface ethernet1/1(Module: routed)Here is the configuration of our default route to the internet: What am...

Expedition Query

I imported asa running config to expedition tool after that unable to export config file for PA it asking need to upload panos configuration.Please suggest for successful export.

PARTNER PORTAL ERR CONNECTION RESET

Hi All,I am currently taking an online self-paced course in the education portal. But suddenly the videos stop and all palo alto related link as ERR CONNECTION RESET. The photo attached is link for CORTEX XSOAR Admin course.

Resolved! PA-220 - Missing Log for Traffic, Threat, URL, Data Filtering, Wildfire

Hi Brother, Our PA-220 happen the GUI stopped the LOG records after the 21-AUG-2020 08:00.Impact the Traffic Log, Threat Log, URL Filtering Log, Data Filtering Log, Wildfire Submission Log. Do you have any experience on this issue? Thanks & Regards,JC

Resolved! Can't upgrade PAN-OS due to software manager

Hi All, i'm trying to upgrade a PA-500 from PAN-OS 5.0.20 to 6.0.0, but after downloading it an error appear, not allowing me to upgrade:- Image file authentication error- Failed to load into software manager. Please retry later- Post processing failed. Please retry. we tried to reinstall the current version and download the image of PAN-OS 6.0....

Resolved! Dual ISP and ECMP

Hello, I have a PA-220 with two links FTTO with same bandwidth (100Mbits/s) from the same ISP (Colt Technology). This two links are configured on my PA-220 with ECMP feature. Now, I want to take a new ISP for my secondary link (FTTH) in place of my second link from Colt. But it seems to me that ECMP works only with two same links (equal cost) wi...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Major flaw in Panorama: can't configure anything without a real firewall added!

Traffic Question

Correlation log subtype action always allowed?