General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Configure Palo Alto GlobalProtect with Azure Multi-Factor Authentication

Has anyone been able to successfully set up Multifactor Authentication using a Palo Alto 5050 firewall and a Microsoft Azure Multifactor Authentication Server using RADIUS Authentication?

Failover Behaviors

Hi All,

Setup: Active-Passive

Path Monitoring: enabled, but not configured(nothing under that Path group)

Version: 7.1.14

Would an Active firewall change its state to non-functional if both of its HA2/HA-Backup goes down?

Related Logs:

2019/12/04 09:41

...

Application Dependency Warnings after 8.1.12 upgrade

Hi all,

I just upgraded all the firewalls from 8.1.7 to 8.1.12 to patch some vulnerabilities. After the upgrade, I am suddenly getting a bunch of application dependency warnings which I commit the configuration from Panorama. The configuration hasn

...

TruStar IT-ISAC prototype?

Hi,

I was wondering if any has been working on a Prototype to integrate IT-ISAC feed from TruStar (https://info.trustar.co/it-isac).

As far as I now, this is a traditional TAXII server, not aware if they have an API too. I'll try to get more deta

...

Resolved! IPv6 Prefix Delegation

I wasn't able to get conclusive info on this from Google...

Does PA support IPv6 Prefix Delegation?

Dynamic Updates and Device Registration Failing in GCP. HELP!!!

Ok Gurus, (including @BPry ) I got a need for some help and visibility on this one... please...

My FWs are virtualized within a open source (KVM) environment, that was placed into GCP back in June 2019.

Somewhere along this week, when I first noti

...

Log Forwarding to Panorama is not happening from PANW firewall

show logging-status in firewalls

-----------------------------------------------------------------------------------------------------------------------------
Type Last Log Created Last Log Fwded Last Seq Num Fwded Last Seq Num Acked Total Logs Fwde

...

Empty "File URL" in "Data filtering"

Hi,

I applied the default "basic file blocking" profile to the policy that allows users to access the Internet.

In the "Data Filtering" monitor I can see few files being blocked (EXE files for example), but I can't see the full URL of that file (the "F

...

Resolved! "Error: Failed to connect to User-ID-Agent at x port 5007

we got this email aler from firewall that user id agent failed to connect to x on port 5007

when i log on firewall i see user id agent is connected.

We are running version 8.0.9 on PA 5050.

how can i know the reason for disconnection on the firewall?

Unable to create same tag with different subinterface

all wan subnets they have created single vlan id 200 and for all there is a single gateway.
Project 1: wan1: 172.30.20.2/24
Project 2: wan2 : 172.30.20.3/24
.
.
.
Project 7 : wan3 : 172.30.20.7/24

For all project gateway is 172.30.20.1/24 because all subnet

...

Globalprotect portals

Please help me.

Any ideas on how to add multiple portal in globalprotect via GPO

Thanks in advance

Rem

Resolved! routing between 2 virtual router

hello,

i have a setup like the image below.

my goal is to allow internet throught interfaces 3 and 4 (i have a virtual router with these 2 interfaces, vr_l3) : this is working

i have an IPSEC tunnel on interface 1 (with another virtual router, vr1) to r

...

Compare the addressed issues list between 9.0.6 and 8.1.13

Hi,

9.0.6 was released on 1/27/2020 and 8.1.13 was released on 2/6/2020. While comparing addressed issues between the release notes, Many issued ids resolved in 8.1.13 are not listed in 9.0.6.

Just a few examples,

PAN-134678

(PA-5200 Series firewa

...

Resolved! dynamic address group in google cloud

has anyone used the dymanic address group objects in google cloud pan? is it supposed to pull all metadeta e.g. labels by itself. i am not seeing anything populated once i click the "Add March Criteria" button

Resolved! File export issue

Hello,

Whenever I export security rules or NAT rules from the firewall in PDF/CSV format, the file is not properly displayed my software version is 9.0.4

example:-

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Configure Palo Alto GlobalProtect with Azure Multi-Factor Authentication

Failover Behaviors

Application Dependency Warnings after 8.1.12 upgrade

TruStar IT-ISAC prototype?

Resolved! IPv6 Prefix Delegation

Dynamic Updates and Device Registration Failing in GCP. HELP!!!

Log Forwarding to Panorama is not happening from PANW firewall

Empty "File URL" in "Data filtering"

Resolved! "Error: Failed to connect to User-ID-Agent at x port 5007

Unable to create same tag with different subinterface

Globalprotect portals

Resolved! routing between 2 virtual router

Compare the addressed issues list between 9.0.6 and 8.1.13

Resolved! dynamic address group in google cloud

Resolved! File export issue

WTH is process 'touch' and hwy is it showing zombie?

Add Virus exception

Migrate model FW to virtualwith panorama for policies (recommended procedure)

Newly Registered Domains configuration

Panorama 11.1.8 supports Azure VM series Palo Altos

Re: Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: Panorama 11.1.8 supports Azure VM series Palo Altos

Re: Newly Registered Domains configuration

Re: Changes to sinkhole?

Re: API error messages

Unlock your full community experience!

Resolved! IPv6 Prefix Delegation

Resolved! "Error: Failed to connect to User-ID-Agent at x port 5007

Resolved! routing between 2 virtual router

Resolved! dynamic address group in google cloud

Resolved! File export issue