General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

proxy_arp_pvlan

Hi all,

I was dealing with a scenario recently which I eager to use the Palo Alto firewalls.

In my design, it is a must to use the feature which is called ARP alias in Cisco terms, and ARP publish in Juniper terms. In case of Linux as Palo Alto is usi

...

Resolved! types of PA firewall inspection

Hello community!

I have a question, checking my stick high firewall, I wanted to know if in my firewall I could configure the inspection mode. I have seen another product from another manufacturer that has 2 inspection modes that are the flow mode an

...

Azure Cloud IPs with Service Tags - REST API

I know there is a miner today for the Cloud IPs with Service Tags from a JSON file download.

There is also a REST API that could be used to pull this information, and would in a way work better than the existing JSON file, because you can split on lo

...

HIP Check licensing expired

I thought that HIP check licensing expiration (trial version), would cause any rules on the FW - using a HIP check profile column to not match. Instead, it appears that it causes the firewall to simply not care about that column at all.... and allo

...

Resolved! Global Protect Saving User Credentials Security?

After reviewing a few documents, I'm hearing that doing this is not a best practice.... If I choose to do so, does anyone know where those credentials are saved and how they are saved in the agent on the endpoint?

I'm guessing encrypted cookies ar

...

Need help with Minemeld converting Hex address to dot-decimal ip address

I have a specific application that provides a list of addresses via API only in hex that I want to pull via minemeld but need to convert it to dot-decimal addresses for eventual usage with Palo Alto firewall policies. Does anyone have a tool or usef

...

Removing my site from Palo Alto's blacklist

Hi, please tell me how can i contact to Palo Alto for taking my blacklisted domain to whitelist in a palo alto DB

TCP TimeOut caused by the PA?

We have a video app that is streaming through our Palo Alto firewall on port 80. Everyone once in a while the session fails and can only be revived by hitting refresh in the browser. I am dealing with a network manager that's convinced the PAs are Re

...

Resolved! How to configure Juniper SRX firewall services in Palo Alto 3220

root@srx# show groups junos-defaults applications application junos-ms-rpc-uuid-any-tcp term t1 protocol tcp uuid ffffffff-ffff-ffff-ffff-ffffffffffff; [edit] root@srx# show groups junos-defaults applications application junos-ms-rpc-uuid-any-udp te...

Resolved! Query About Policies Security Rulebase Report

Hi Team,

When we export a "policies security rulebase report" which shows unknown format like below,

Note: Current firmware version is PAN-OS 8.1.10 when on PAN-OS 8.1.9 we could view correct values!

Did anyone faced this issue? please let us know w

...

Global protect app transparent update issue

Hi Team,

I have an issue, where customer is not able to update global protect app using transparent option. I'm explaining the issue in very detail to avoid confusion.

User machine is installed with client version 2.3.1. During the time of deployment

...