General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

User ID Agent all DCs in connecting (Access is denied) status after migrating from Win 2012 to Win 2019 Server

Hi all

We have installed 10.2 version of UIA in new win 2019 server as our 2012 server would be shutdown soon. The problem is after configuring all the required permissions the agent status overall is connected, but on all our ADs listed in UIA, th

...

Resolved! How to compare configuration btw PA firewall.

Dear Team,

I recently backed up and restored the configuration of the existing Palo Alto firewall to a new model.

My question is: how do I compare the configuration on a new firewall and my existing device, or does PA have any useful tools for the

...

Resolved! No AV updates, 'Virus updates are available but you must first update threat content'

New 1410 appliance running v11.0 -> 11.0.2-h2. Fully licensed, latest content update installed yet no AV updates are available and the following message appears in system logs (in both .0 and h2):

Retrieving Content 'Antivirus' info failed with err...

Resolved! PA-440 with partial working GUI (PAN-OS 11.1

Hey all,

I've got 2 PA-440s at a customer in an Active-Passive HA Cluster. These firewalls have replaced the older PA-220s that were previously present. Traffic and everything flows as intended and all of the firewall rules are also working as inte

...

Resolved! HIP Objects - matching multiple OS versions in one object

Hi All,

Within PAN-OS (10.1.x)

Using GP, I want to setup one HIP object to match for multiple OS versions for instance Windows 10 and upwards. But does not seem to be doable instead i can only select each version within a specific OS range.

I want to

...

PAN-OS 11.0 Explicit proxy with no authentication

Hello,

may it be possible to use explicit proxy feature in PAN-OS 11.0 with no authentication and allow access for all users?

The documentation is very limited in this area and describes SAML or Kerberos authentication only.

Thanks

Lumir

Resolved! Some CVE Not Present In PA NGFW

Dear Team,

I hope all of you are doing well.

I have some CVE IDs from my Tie 1 firewall, which is Check Point. I have checked all of those CVEs in the Palo Alto firewall, and most of them weren't available.

Could someone explain or advise me on

...

Unexpected change by user __cloud_services - Anyone else get this today?

We use Panorama to manage Prisma access and have alerts configured for config changes. Today got an alert of a commit from user __cloud_services, from the loop back IP 127.0.0.1 I assumed I would look up this user in google and see that it's a se

...

Python interpreter error Ansible

Resolved! Need to re-open closed case

Hello everyone

I had an old case that was closed already. I need to re-open it. Can you please guide me?

version recomendada de PA-445

donde puedo verificar la version recomendada de actualizaccion de software para firewall pa-445,

en tratado de ver en esta direccion :https://live.paloaltonetworks.com/t5/customer-resources/support-pan-os-software-release-guidance/ta-p/258304

pero

...

PA-3420 will not detect SFPs on any port

My backup PA-3420 in an HA peer will not detect SFPs or link on any port (including copper) but the management. The primary unit detects and links on multiple SFP slots with multiple different SFP types and brands. The same SFPs in the backup unit wi

...

Resolved! Can not check Forward Trust Certificate

Hello.

I'm having an issue with a setup of decryption.

we have a custoemr who wants decryption. and they also have an entreprise CA.
to have the least user impact they wanted to use an entreprise signed certificate for their ssl forward trust.

I crea

...

PA-3420 sudden restart issue

Hi all,

One of our clients has a PA-3420 HA-pair device with an active-passive setup, one day they noticed that their firewall went to reboot. Upon checking there are no signs on the system logs that encountered power interruption or hardware failure

...

Resolved! Palo PA-415 on High-availability but Wireless access points only have 1 network port.

So I have a very small site and PA-415 seems like a idea firewall to that, but we have a company policy which we have to have a HA on a firewall.

I'm trying to not to use a switch given that PA-415 have a 8 poe ports. issues APs we use only have 1

...

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

User ID Agent all DCs in connecting (Access is denied) status after migrating from Win 2012 to Win 2019 Server

Resolved! How to compare configuration btw PA firewall.

Resolved! No AV updates, 'Virus updates are available but you must first update threat content'

Resolved! PA-440 with partial working GUI (PAN-OS 11.1

Resolved! HIP Objects - matching multiple OS versions in one object

PAN-OS 11.0 Explicit proxy with no authentication

Resolved! Some CVE Not Present In PA NGFW

Unexpected change by user __cloud_services - Anyone else get this today?

Python interpreter error Ansible

Resolved! Need to re-open closed case

version recomendada de PA-445

PA-3420 will not detect SFPs on any port

Resolved! Can not check Forward Trust Certificate

PA-3420 sudden restart issue

Resolved! Palo PA-415 on High-availability but Wireless access points only have 1 network port.

Can't find the "Republic of Kosovo" in the "Firewall Region Code Legend"

Device - certificate based authentication

Failover IPSEC tunnels with tunnel monitor keeps both tunnels active

Wildcard URL for Non-HTTP/HTTPS traffic

WEBUI Session Timing Out

Re: Allow all web addresses with .gov and .edu extensions

Re: Wildcard URL for Non-HTTP/HTTPS traffic

Re: Howto delete sub-interace from cli

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: How can I filter disabled rules in the 'policies'-tab

Unlock your full community experience!

Resolved! How to compare configuration btw PA firewall.

Resolved! No AV updates, 'Virus updates are available but you must first update threat content'

Resolved! PA-440 with partial working GUI (PAN-OS 11.1

Resolved! HIP Objects - matching multiple OS versions in one object

Resolved! Some CVE Not Present In PA NGFW

Resolved! Need to re-open closed case

Resolved! Can not check Forward Trust Certificate

Resolved! Palo PA-415 on High-availability but Wireless access points only have 1 network port.