General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Unable to view Global Protect Authentication Logs

Logged into Panorama CLI and typed this is:

show log system eventid equal globalprotectportal-auth-succ

No logs showed up. Also tried from the gui:

Monitor > Logs > System and filter using (eventid eq globalprotectportal-auth-succ)

Still nothing...is

...

Resolved! IPSEC VPN NAT issue

I have a VPN request where peer's IP range is conflicting with one of my internal IP range.

They are asking me if I can do a NAT on my end to resolve it but based on my experience it must be them who should do a NAT.

please correct me if I'm wrong.

Not able to introduce "?" in log-link

Hi,

Im trying to configure a log-link web with the character "?" in the middle but the PA is deleting this character "?"

Do you know if there is any way to put the question mark character "?" in the URL

for example this:

set deviceconfig system log-lin

...

Auto switch between internal & external gateway

If I mix external and internal gateways in the same portal.

Does GlobalProtect automatically switch gateways when users work in the office or work outside?

In the current situation, when I use GlobalProtect in my office or office, I need to manually s

...

Resolved! Pending changes are not coming up in “Preview Changes” Tab

Hi Team,

pending changes are not coming up in “Preview Changes” Tab.

This is seen every time we try to commit changes and multiple Palo Alto firewalls are showing same behavior.

A blank page is coming up when there should me details displayed regarding

...

Policy Optimizer Additional Apps

Hi, we have Policy Optimizer enabled and looking at the data there appears to be 'seen' apps that are not actually allowed by the rule:

I'm thinking someone edited the rule (from perhaps 'any' to 'sip') but cannot confirm in the logs (rule is also s

...

Understanding AppId Dependency Implications

I've run in to a few instances where I need/want to allow a specific App with a specific policy, but it has a dependency I don't want to include with the same policy. I'm wondering if I need to rethink how I arrange these rules.

The most recent examp

...

PANORAMA PA Firewall Management -> entire backup of the Firewall Running Config

Hi,

we are managing a pool of PA Firewalls using Panorama.

Some of the settings are pushed to the managed devices via Templates (i.e. several additional users, shared objects, etc.).

Device Config is saved on a regular basis on the device itself as w

...

Resolved! SFP Compatibility PA3050

We have a PA3050, and we have 4 SFP like this: SFP HP X121 1G SPF LC LX

So we would like to use 2 SFP to do a aggreagete link in PA.

Is this SFP compatible with PA3050?

thanks a lot

SFP + modules for PA 5220

Hello we have PA 5220

and we need to connect SFP+ modules.We have Finisar SFP plus module but it does not work

Can you recommendme any third party SFP+ module which is sure to work

Resolved! Palo Alto is not reading full URL

We have an in house mail server which have different URLs to access its web mail and administration center. We want to block administration center access from Internet. I tried using URL Filtering but Palo Alto is not reading full URL and only showin

...

Filter default route

WE have configured OSPF between a Palo Alto firewall and the CORE to which it is physically connected, within this CORE there are several VRFs that interconnect with the firewall (VRF1, VRF2, VRF3). Is there a way to filter the default route in the P

...

why policy for captive portal redirection has no hit counts

We are using MFP for port 22.

we have CP configured and also we have rule in PA to allow traffic for CP url on specific port.

But we see no hit counts on this rule

If i remove the rule then CP redirection does not work?

Can someone please explain this

...

Resolved! Restrict Amazon-Cloud-Drive-Upload

Is there any way to restrict amazon-cloud-drive-upload for certain websites?

For example, say the website is www.mywebsite.com (public IP 1.1.1.1) and has an applet that allows users to upload files. When the user attempts to upload the files, the

...