General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

upgrade 7.1 to 8.1 ha pair and panorama

Hello,

I'm going to upgrade pa 5020 *2 and m 500 to 8.1.9 from 7.1.18.

My plan is:

Upgrade 8.0.19 M-500

upgrade 8.0.19 passive

upgrade 8.0.19 active

upgrade 8.1.9 M-500

upgrade 8.1.9 passive

upgrade 8.1.9 active

Log migration for M-500

My concern is when I

...

Resolved! Source MAC address white-list filtering on the PA-220?

Hi all, I am new here so sorry if this is in the wrong place. At my work place we have a new single PA-220 firewall router that I am configuring to be used as a router/gateway out for SIP traffic. The IP phones will use a interface on the PA-22

...

Resolved! GlobalProtect Event log

Hi, I am trying to trigger a GPO event in Windows Task Scheduler on the event when someone connects to global protect.

Does anyone know where I would find that?

Resolved! Cant find option to take ACE exam

Hello

i had been trying to take the ACE exam but i couldnt find the option of ACE in the learning center, only PCNSE and PCNSA. I actually wanted to take the ACE since im working for a partner of Palo Alto and ACE is needed to take PCNSE directly af

...

Resolved! Output stop working

I have a Output to Azure Sentinel. I reboot, it work then stop working for a unknown reason. I have a bunch of ERROR.SUBMIT

How do I troubleshoot that ?

Resolved! Auto update agent failed to download new WildFire as another download is in progress

Hi All,

Why would this happen and how to avoid it in the feature?

Thanks,

Myky

Can IKEv1 be changed to IKEv2 using the properties page (Ikev2 only selection)?

Need to upgrade to IKEv2 PA 820 v 8.0.12. Can I simply change the properties on the existing IKEv1 if it is temporarily stopped? or do I need to re-create new IKEv2 tunnel?

Resolved! Email alert with Disabled applications in vsys1:

I am getting Email Alert with this

SYSTEM ALERT : high : Disabled applications in vsys1: 104asdu-file-transfer-type120 104asdu-file-transfer-type121 104asdu-file-transfer-t

How can i fix this?

Resolved! SSL decrypt and Mutual Authentication

Does any application which is using Mutual authenentication after say one user gets decrypt error will other users session will go to ssl decrypt cache automatically?

Resolved! ACE v8.1 exam - training documentation?

I need to update my ACE certification. I added Accredited Configuration Engineer (ACE) Exam - PAN-OS 8.1 Version to 'My Training'.

What study material is available for the ACE 8.1 exam?

DNS Block and Notification on Specific Networks

Greetings all,

I'm toning down some of our NAC enforcement in favor of trying to find other ways to secure the network (lots of users on BYOD don't like to install a 3rd party client to monitor their device). One of the things we were doing was to c

...

Resolved! Global Protect with RSA SecurID and Group Mapping for Security Policy

I have setup Global Protect with RSA SecurID authentication. I would like to use the Active Directory groups of these users in my security policy to then allow or deny access to resources based upon their membership.

I have configured the group map

...

Site-to-site VPN with Strongswan (opensource)

Hi all,

I wonder whether anyone has successfully configured site-to-site IPSec VPN tunnel with CalAmp LTE Fusion device (a cellular mobile router). Somehow I cannot establish the vpn tunnel under different configurations and I know it is running opens

...

Upgrading from a pair of PA3200 which had Global Protected renewed a month ago to a pair of PA3220's

We are looking to upgrade our current Palo Alto firewalls and only renewed our Global Protect licence a month ago. I assume that I can transfer the licence across to the new firewalls or recieve a refund for the 11 months left to use against the new

...

Resolved! can we log urls for deny rule?

I am trying to configure a sec policy so it will show the url log though the traffic is blocked. has anyone tried it? Please let me know.

thanks.

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

upgrade 7.1 to 8.1 ha pair and panorama