If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
I have got PAs in two DC, each DC have PA in active-passive unit, when I commit to one of the pairs in one of the DC, the committ is stuck at 0%.
I see the Panorama is connected to "Passive" FW instead of the active FW , could be the reason why the c
...
Hello
[Failure event]
In the case of O365 's xml format, when MineMeld received traffic after ClientHello, I got a list but if I set config for JSON support I can not get a list.
[Prerequisites]
MineMeld will go through Paloalto and do Internet com
I'm trying to solve a routing conundrum to improve a remote site and provide redundancy, and hoping others may have some solutions. The short version is that we have the remote site with basic commodity internet using VPN to connect back to two datac
...
Dear Sir,
I am beginner in 802.1x authenication and paloalto.So please help explained and guide.
I want to use 802.1x with MS CA.Can i use paloalto firewall as a policy enforcer for 802.1x authenication ?
can use PA as a radius server for user log and m
...
Migrating a Cisco fw to a Palo Alto and the Cisco has the ability to authenticate users to external Radius for FTP transfers based upon policy rules - the end user simply gets a user name and pass prompt which works across all platforms and can be s
...
I am testing Multi Factor Authentication with Okta. I have configured everything (including certificate profile) as per the guide as well as Okta specific YouTube video, The first factor (active directory auth) is working fine, however, I am getting
...
Is anyone using the following Proof Point prototype: proofpoint.EmergingThreatsIPs?
The prototype allows you to select certain categories once added as node however it looks like the categories listed within minemeld are not matching up to what
...
All,
I have an Arris (BGW210-700) set up as 192.168.2/24 (DHCPed) and have successfully configured the IP Passthrough to the PA-220. However, I am unable to get outbound from the PA-220.
Has anyone run across this? I have the Arris going into 1/1 (a
...
We are looking to configure the firewall rules where if a known user fails the HIP check, the user has access to only the internet, and not the intranet.
I currently have the rules configured such that failing the HIP check allows the user to access
...
Hello,
I am using Pan-configurator to create some scripts, and i am wondering how to update predefined.xml file.
Can we update this file manually or automatically?
Kind regards.
Hi, i need Hardware Capabilities ( type of Cable, Chassis Height , Data Ports , managment ports ... ) of Palo alto PA-5050 to install in Data center of our customer in cluster with two WLC.
Thanks,
Hello,
I have an IP pool for GP users and IP are no being clearing when users disconnect the VPN, to clear this IPs we have to reboot the FW,
Is there other way to clear this addres ?
this must be cleared automatically after disconnect?
Regards
My PA NGFW managed to setup VPN tunnels with AWS VGW. AWS given 2 sets of VGW where each of the VGW comes with 2 links that will connect to NGFW 2 ISP link respectively with different set of public IP Address.. Below are the setup flow:
NGFW ISP1 -> A...
Just getting my head around the ins and outs of Palos, and some initial lab setup we had leveraged a couple of PA-220s and a virtual instance of Panorama.
Using that config, I'm building a standalone PA-220 and want to recycle the bulk of the config
...
Hi All,
What action would URL filtering prefer if the same URLs are placed in 2 different custom categories with different actions in a profile.
Example
custom_URL_category_1 = *.somesite.com
custom_URL_category_2 = *.somesite.com
On the URL filtering
...
on:
URL Filtering > Advanced URL Filtering
on:
PAN-PA-5220 Purchase
on:
Session end reason=resources-unavailable, version 8.1.15.h3
on:
Admin credentials were not changing
