General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Upgrade OS from 8.1.x to 9.0.x Boot Loop

Upgrade PA-850 from 8.1.5 to 9.0.6 Boot Loop

Hi,

I want to ask if anyone have experienced upgrading Palo Alto from 8.1.x to 9.0.x and worked it out, because i didnt.

Last night was my nightmare, i tried to upgrade PA-850 straight from 8.1.5 to 9.0.x. Fo

...

Resolved! Not Blocking EICAR June/2020

PA220, running 8281-6129

If I go to https://www.eicar.org/?page_id=3950 and try download test files using http, the firewall is not blocking of the download.

If I go to the old site, http://2016.eicar.org/85-0-Download.html , the firewall will bloc

...

Migration of PAFW PA-5050 8.0.12 to PA-5220 Latest version

Hi,

I have planning to migrate PA-5050 HA version 8.0.12 to PA-5220-HA to latest version.

Constrains - The new PA-5220 cannot be downgraded to 8.0.12 to migrate the configuratoin. PA-5050 are in production so can't be upgraded to suitable version of

...

DHCP option 43

Hello,

Can we use Option 43 without Vendor Class Identifier, In GUI without VCI I can't select ok. If client doesn't use option 60 with DHCPREQUEST then what we do ?

Matt

destination nat from Mikrotik router to Palo ato

hello

i am about to transfer from Mikrotik router to palo alto i have one issue i don't know how to do it in palo alto

i have some servers with privet IP address and ports (web-server and database server) and these servers need to be accessible from

...

Both LACP interface ethernet1/2 moved out of AE-group

We've a PA-3050 up and running for over a year now. It is configured with an agregated interface with LACP enabled (mode active, transmission rate Fast). These interfaces are attacheced to a procurve 5406 where the interfaces on the procurve are conf

...

HOW TO CONFIGURE SNMPV3 POLLING via terraform

I configured a template using the config mentioned on https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHOCA0

And I want to automate this using Terraform. Is there a way to do it?

BGP RIB out and Local RIB

Can someone explain me the difference between RIB out tab and Local RIB in BGP.

What is contained in RIB out and Local RIb?

Also what is pupose of Import and Export tab in BGP

Appreciate your help.

-Rajaram.

Firewall Monitoring - Availability and hardware utilization

Hi There,

I need to monitor the firewalls, actually are 2 Ingress, 2 Egress, 1 Management and 1 panorama in 5 different environments, (dev, no prod, and so on) If you google "custom pan os metrics published for monitoring" the first link has the step

...

DFA in PA

As a result of the covid, many clients with GP are asking me about the possibilities for implementation DFA with Palo Alto GP.

I was checking about client certificate config in GP but i think this is not very safe at all.

What recommendation/DFA do yo

...

Resolved! Route to ISP connected to other VR

Hi all. I have the this situation:

- router VR1 has LAN network 10.0.0.0/16 (zone LAN1) and ISP network X.X.X.128/27 (Zone WAN)

- router VR2 has LAN network and 10.0.0.0/8 (zone LAN2)

- Users in both LAN segments need to access internet

I made a static

...

Resolved! Can't get a route

I have new Palos that I didn't set up myself. I created the interfaces and added OSPF. Network team says they can't get a route for a network. Tried everything I know. Suggestions?

Resolved! Panorama Config Report(s)

Hello,

I know this information can be gathered via the 'Configuration Log' but is there a report I can build (I can't seem to find) that I can schedule daily or weekly reports to show edits to the configuration(s) made from Panorama?

Thanks.