General Topics

Join us for an amazing virtual event - Ignite: What's Next - October 28, 2025

AI is upon us, and here's a fantastic chance to learn more about it!

During this virtual event, we will be hearing from top industry experts and senior executives within Palo Alto Networks about PANW's plans for AI to help drive a more secure futur

...

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

BGP peering on loopbacks, struggle is real

I am really struggling with this. I have been at it for hours. I have two Palo Altos in standalone mode both forwarding traffic.I have connected to each palo cisco 9500s and Cisco 9300s. These are not fully meshed. So i know that I am going to need R

...

Resolved! Default Action for Revoked Certificates via OCSP and CRL

Hi All,

When you enable OCSP and CRL revocation checking on the firewall, if a certificate is revoked the default behavior is to block the connection. Is there any way to change that behavior so that maybe the revoked log is written in the system log

...

Resolved! Downgrade from 9.0.2 to 8.1.8

is the right approach to simply download and install 8.1.0 and then download and install 8.1.8? Are there any "gotchas" i should be aware of?

Global Protect Agent GW Login Lifetime

We are having an issue where our internal GP agent is authenticating to both of our internal gateways normally, but after the period set for "Login Lifetime" - the firewall is clearing the IP to username mapping, even though the GP agent still shows

...

MIgrate From Firewall to Panorama after

HI Expert ,

I would like to know about that if I would to migrate local firewall to panorama and muti vsys is concren?

Please suggest to me

Thank you

Palo Alto Networks Versus Watchguard M4600

What model of PAN NGFW we will position if the competitor is Watchguard M4600 for 1500 users?

how to distribute one internet line to multiple services

in my current scenario, I have 4 interfaces configured with different Public IP address and each interface linked to the different router and each interface have different services (Internet Email1, Email2, VPN)

Our Plan to get a new line from a new

...

Resolved! Recommended PanOS in 8.0.x

HI, we are hitting a critical bug in our PA5020 about memory leak. Current version is 8.0.8. So we are planning to upgrade. What PanOS version do you recommend us? more "stable"?

SMTP Inbound Decryption

I am trying to setup inbound decryption for SMTP (TLS) using the default Decryption Profile.

What destination IP address do I use in the Decryption Policy: public pre-NAT or private post-NAT?

Regards,

Han.

Interface shutting down

I have a VM-100 running 8.0.12. I inherated this configuration from the previous network engineer. I am quite new to PAN-OS and have found that an interface that faces the Internet is shutting down.

I can cycle the port in the GUI, and able to pin

...

Multiple Logins for a single user at different stations filtering not functioning - security threat?

I am new to Palo jsut going Live with a unit. I am seeing when users move from desk to desk and do not log out but login again at the second station their filtering does not function. They are either filtered as per the last login previously at the

...