General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Resolved! Routing to/from the Management Interface

I have two new PA-455-5G firewalls running 11.2.3. These have 8 ethernet interfaces, two management ports, and two console ports. I have configured the management ports as 10.0.0.1 & .2 respectively on FW1& 2. These will be in A/P HA, so I want to be able to manage the firewalls individually via these management ports. I do NOT want to u...

Resolved! HA traffic "HSCI" over Switch

Hi Can i use cisco switch as layer 2 between two PA-3410 for HA ports "HSCI" . as i need to connect the HA ports between two building using the dark fiber. Appreciate your support Thanks

Resolved! Internet connection down

After upgradation of lease line to 1G internet getting down frequently.

URL List not filtering correctly

Hello everyone, I have created a URL List in Objects - URL Categories to allow only specific URLs and added it to Policy Rule in URL Category section However, I noticed that all traffic and is being allowed on this particular rule, seems like the URL List is being ignored I have other rules configured the same way (with URL Lists) and all works ...

Palo Alto Support - real deal please

Hi, We're trying to understand the real options for support features Customer Support Plan - Palo Alto Networks We're currently running multiple FW's in HA mode and we subscribe to premium support. We're thinking of down grading to standard support however it's not clear what the restrictions are. Note we're not interested in the HW replacem...

Resolved! PANOS SDWAN VS CLOUDGENIX

Hello , I have a query . When PANOS can do all SDWAN FUNCTIONS, WHAT IS THE ADVANTAGE OF CLOUGENIX ION . .EVEN FOR BRANCHES ,PANOS SMALL BRANCH MODEL CAN PARTICIPATE IN SASE OR SDWAN , SO WHAT IS CLOUDGENIX USP ?

Global Protect, separate ip pools for different users.

Looking for a little guidance. I'd like to make separate ip pools for different user groups when using global protect, I'm pretty sure this is possible. It is the trying this back to an AD user group where I am stuck. Anyone have an example? thank you

Resolved! Global protect warning message upon commit

Hi All, A client recently updated to PAN OS 10.1.2 and is now receiving the below warning upon commit. 2021-09-19 12:18:46.350 +1000 client sslvpn reported warning: Portal config 'GP_VPN': Authentication Override and Config Seletcion Criteria -> Device Checks/Custom Checks are both configured, Authentication Override will be disabled.(Module...

Layer 3 Sub-Interface Question

All, I have recently set up a test lab with a PA440. In the lab I have created a WAN and LAN zone from two different physical interfaces. In addition, I have created a sub-Interface from the physical ethernet port 1/3. This is what the ethernet port 1/3 looks like: Ethernet 1/3 (Physical Port) - Sub-Interface Eth1/3.25 ~ L3 (IP = 1...

QOS for SIP Questions

I have tried configuring QOS for SIP and Teams calling but it doesn't seem to be working right. I can see the policy is detecting the applications correctly and assigning it to class 1 but it isn't prioritizing the traffic. My SBC is in the DMZ which is one interface and my users are on a separate interface and they both share one internet conne...

Youtube in QoS

Hi everyone!I want to use youtube with QoS.I want to limit class2 to 50mb.But the actual data amount that works is 140mb.Did I set it wrong? If you have any good ideas, please let me know.

Factory reset PA-3060 firewall. Can't get into maintenance mode

I don't have the username and password for the device. Trying to factory reset the firewall. When I see the promnt type "maint", I type maint, but the firewall just continues through the boot process. Can someone let me know what I'm doing wrong. Thanks

PCNSE - Instructor-Led Courses - study guide

Dear all,I noticed that when accessing the Instructor-Led Courses section, only tests are available, but the actual courses seem to be missing. Could you please assist me in locating the full courses or provide guidance on where they can be accessed? Any help would be greatly appreciated. Thank you!

PA-VM sysd_construct_sync_importer

We got a customer that runs into this issue recently, it's a known issue (not public) for versions 11.0.0, 10.2.3, 10.2.2-h1 (and also to us 10.2.3-h2, 10.2.2-2). When you run into this, means that there's a hardware issue, please go to TAC in order to find the root cause. VM-series fails to boot on Hyper V with older Intel Xeon CPUs. This is h...

Website is not secure, certificate is expired.

Hi everyone, Recently, I've seen an issue where if we use a computer that has its traffic routed through the PAN NGFW, we will get an error message from the website saying "Your connection is not private" with an error code: NET::ERR_CERT_COMMON_NAME_INVALID. This happen to 2 different websites I've seen so far. When we looked at the certifica...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!