If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
Hi 2 all
I am trying to create best practice for Vulnerability Protection and Anti-Spyware Profile with extended packet capture as desribed in
https://www.paloaltonetworks.com/documentation/81/best-practices/best-practices-internet-gateway/best-practi
...
How can reassign the VM Evaluation authorisation to new PA-VM after rebuilding the VM firewall?
Kind regards Zoumana
Hi,
We realised that vcenter fields are not being updated when we create a dynamic address group in panorama. From the fw is working fine and values are refreshed in real time. The method we use to monitor vcenter is VM information source.
So we dont k...
I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation. Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN.
I've got some Nexus9K switches with Layer 3 licensing in HA an
...
Hi together,
at the beginning of this week I ran into the following challenge.
I’ve to setup an IKE v2 Tunnel between a Cisco ASA and a PA-850 running on 8.0.12.
During the configuration the Cisco Partner send me the local and remote tunnel pre-shared
...
Hi there,
I have some problems with a user-id installation on PAN-OS 8.1.4, scenario:
1) Windows AD Domain Forest, with around 6/7 domains
2) I'm only interested in authenticating users from one of the domains in the forest
3) I've correctly connected th
...
So we have several PA-200 in production and need to upgrade to 8.0. I was talking to a Palo Alto technician and he was telling me that the PA-200 are too old and not enough resources to handle the newer firmware and to upgrade. Do the PA-220 have eno
...
Hi
I have minemeld mining O365 address for my PA's. Moved to the new API as well.
I have a hybrid Exchange setup.
I have moved some mailboxes up to the cloud
What I have found recently is mail stops flowing
I have a rule that basically say
MS Public
...
Hi
so my setup 5220
vlan 20 ... my named dns server 10.43.20.100 and 10.43.20.102 ... dns1 and dns2
on the pa on interface with vlan 20 10.43.20.1 I have configured dns proxy.
works well for dns via udp
but tcp doesn't work
so
tcpdump -pni eth0 host 10.
...
Is there way to target a PAN hardware platform in an Expedition project before importing the actual hardware? We may be getting the new hardware in January but may also have a very short window to setup and install. I had hoped maybe to use Expedit
...
We have M100 in active and Passive mode.
On Active Panorma under managed devices I see commit succeded for all firewalls
when i log into passive panorama it shows commit failed for few firewalls - template and shared policy?
How can i fix the commit
...
I had configured the Template say Corp
Under email profile I have selected the Location as vsys shared is not checked in.
When i go to log settings then system then under email I do not see email profile which i created
If i change the email pr
...
Hello Community,
I'm creating a SAML Identity Provider Profiles in order to use it into a authentication policy, when I'm tring to import the metadata into a PA Appliance with PANOS 8.1 (also tested with 8.0 with same result) it fails with this error:
...
Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that come
...
on:
Upload and Download QoS
on:
Mute the Music while on Hold
on:
Web interface not working
on:
Unable to Deactivate PA - VM license through Panorama
on:
Migration / Import of configuration only to a destination vsys, a particular vsys
on:
Commit Warning for Antispyware
