General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Configuring custom certificates on WildFire private cloud cluster

Hello everyone!

We are going to use custom certificates in our PA deployment. We have 2 WF-500BS with PanOS 10.2.7-h3 installed and we are facing a problem. If we use predefined certificates, the cluster works fine, if we use custom certificates, som

...

PAN Customer Support Portal down right now?

trying to grab some lic's and no dice. this just me?

Resolved! SAML login remove lock (superuser?)

When I am logged in via SAML, I noticed that I was not able to remove other users' locks. Seems like this may be because I am not a superuser? Is there any way to make a SAML-authed user be a superuser?

Global Protect Portal/Gateway infrastructure

hello

I would like to add a new IP address to create a new GP portal/gateway

the IP Address I have been given by the provider is not available to select as an IP Address

I created a tunnel and configured an IP address but that has not solved the i

...

high availability

hello

I have 2 x 440 series to configure for HA active/standby

I plan to use ethernet 1/5 , 6 , 7 & 8 for the Data & Control links

I have connected the interfaces to test

when I select interfaces under "HA Communications" only the management inter

...

Intregate Captive Portal Palo Alto with Aruba clearpass

Hi Expert ,

I would like to know about intregate authen captive portal itself for identify byod of palo alto with clear pass the clear pass have pull information with ldap my question is below

- Palo alto can connect just clear pass for authen

...

Resolved! Action=Allow while NATDestinationIP=0.0.0.0

Hello,

I am not a firewall administrator I am an analyst who reports alerts on suspicious behavior based on indicators of compromise matches, mostly related to ransomware and IP addresses with bad reputation.

I have a big doubt because I always g

...

Resolved! Ping Failed (aged out)

Hello friends,

I configured site-to-site vpn between two firewalls and the ping from network behind firewall (internal network) to other internal network is failed (timeout) while the traffic shows allowed in the firewall logs. The Tunnel is Up and

...

Resolved! Can't create case, get salesforce error (ever since my day 1)

I can get logged in to https://support.paloaltonetworks.com, but when I attempt to create a new case I get a Salesforce error:

https://supportcases.paloaltonetworks.com/_nc_external/identity/saml/SamlError
Single Sign-On Error

We can't log you in beca

...

PBF with NAT, how does it works?

Hi Guys

According to document , if there's destination NAT , there'll be second routing lookup to decide outbound zone & interface. But I'm very confused when there's routing and PBF together, In the second routing lookup, how does PBF rule work? Does

...

Resolved! Type=Deny while Action=Allow

When opening iOS Facebook app I''m unable to play a movie... however, from the same device if I login to facbook via browser I can play the video.

I'm trying to find out why the iOS App is getting blocked, as my policies clearly allow it.

Rule iPhones:

...

Palo Alto Clearpass integration disconnecting

We are looking to utilize Cleaspass sending information to ours Palos for the purpose of user-id. We have this applied in some test groups but we are running into an issue where after a few days the connection appears to time out and the Palos stop r

...

Resolved! PAN NGFW carbon footprint

Hello,

I'm searching for informations about environmental impact of NGFW.

Is there a benchmark for the carbon footprint of Palo Alto physical firewalls?
Measurements such as the footprint of the production of a firewall, daily electricity consump

...

Panorama MGMT interface option - Public IP ?

Hi

Question about configuring Panorama management interface.

Why is there a "Public IP" under the management interface?

"IF" we would set a public IP on the panorama, dont we configure it under IP Adress + Netmask + gateway?

Why is there a "Publi

...

Resolved! Find the source for "DNS amplification attack response"

Hello,

We receive many "DNS amplification attack response" alerts with the source of our internal DNS servers toward public DNS servers on the Internet. How can we know whether these alerts are not false positives and if they are true positive, how t

...

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Configuring custom certificates on WildFire private cloud cluster

PAN Customer Support Portal down right now?

Resolved! SAML login remove lock (superuser?)

Global Protect Portal/Gateway infrastructure

high availability

Intregate Captive Portal Palo Alto with Aruba clearpass