General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Palo Alto IDS Deployment

Hi!

Has there any specific document for PA IDS Deployment and best practices?

Thanks in Advance..

how to route different inside subnet to different outside interfaces?

the customer have added a extra isp router which i need to route a certain subnet through it for internet , the problem the default route 0.0.0.0/0 already route interent through the old outside interface , how do i route the specific inside subnet t

...

Resolved! Server Monitoring Not Connected

Hello,

Microsoft AD under Server Monitoring is showing as 'not connected.'

We would like to use the PAN-OS Integrated User-ID Agent

Output from debug commands show UserID Debug Log is enabled but nothing is logging.

Anyone encountered similar issue?

Resolved! Multiple malicious scans from the same source address - can I block IP automatically

Occasionally, I notice that the firewall has been blocking tens or even hundreds of attempts from a single source address for multiple threats. In a case like this, it seems obvious, for someone looking at the logs, that that source IP should have b

...

Cisco ISE and Palo Alto TACACS

Few questions here.

Why do you need user local on the PA devices?

Why do you need those users local on the ISE box rather then allowing access from AD groups via ISE?

If the users are local then password changes are not possible when a user changes th

...

Resolved! Which log format is best for syslog , CEF or LEEF

Anyone please explain the diference between CEF and LEEF and which one is best for 8.0.*.

Resolved! URL Filtering & Blocked Countries Response page

I have custom URL filtering response page enabled which works; however, I have noticed that when users get this response page, the URL category is correct and is allowed. When further investigating the issue, we found that the URL/Site is blocked by

...

Panorama Device Removal

I had to rebuild Panorama 7 on ESX as for some reason after a power outage the image could not be restored...

New installation completed and licensed but I cannot get the firewall 3020 to connect.

I have removed the Panorama settings from firewall an

...

Resolved! Global Protect - Newly Imaged Laptop, first time login before Windows login

Hello,

Been trying to look around about how to do this but not finding anything. So we are moving from AnyConnect to Global Protect. The transition has been fairly smooth but ran into a unique issue yesterday.

We have a small number of user's who a

...

Global protect

Hi team,

How can i extract a detailed report on the list of all Global protect users (VPN users). this report aims to get the date each user was created. this is for audit reasons and i would appreciate if any one has a solution.

thanks

collecting palo alto firewall logs with Graylog 2.5

Dear palo alto community,

I collect the palo alto firewall logs with Graylog 2.5.

When i make an ssh connection to the fw palo alto with an incorrect password, this ssh connection does not get into the logs on Graylog interface web why ? To configure

...

Resolved! Restricting Global protect VPN access to specific countries

How to configure Global Protect vpn users to access from only specific countries ?

Palo Alto Threat Events Not forwarded

Hi all,

We are unable to capture below logs in syslog, but in Firewall it appears to be forwarding it to Syslog. Logs are being forwarded, but some fields are empty.

Resolved! How to configure multiple routes at once

Need to configure a firewall with the same 100+ routes that exist on another.

Is there a way to copy the routing table from one FW to another via CLI? Can I copy the "show routing route" output and configure multiple routes on another using this outp

...

Resolved! Botnet Report Missing 8.1

We are running 8.1.7 and discovered the Botnet report is missing from the monitor tab on the gateways. Does anyone know where this report went?

PAN-OS 7.1.X PAN-OS 8.1.7

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Palo Alto IDS Deployment

how to route different inside subnet to different outside interfaces?

Resolved! Server Monitoring Not Connected

Resolved! Multiple malicious scans from the same source address - can I block IP automatically

Cisco ISE and Palo Alto TACACS

Resolved! Which log format is best for syslog , CEF or LEEF

Resolved! URL Filtering & Blocked Countries Response page

Panorama Device Removal

Resolved! Global Protect - Newly Imaged Laptop, first time login before Windows login

Global protect

collecting palo alto firewall logs with Graylog 2.5

Resolved! Restricting Global protect VPN access to specific countries

Palo Alto Threat Events Not forwarded

Resolved! How to configure multiple routes at once

Resolved! Botnet Report Missing 8.1

WTH is process 'touch' and hwy is it showing zombie?

Add Virus exception

Migrate model FW to virtualwith panorama for policies (recommended procedure)

Newly Registered Domains configuration

Panorama 11.1.8 supports Azure VM series Palo Altos

Re: Windows-Remote-Management & Implicit Use of Web-Browsing

Re: Excel downloads being blocked

Re: Panorama 11.1.8 supports Azure VM series Palo Altos

Re: Newly Registered Domains configuration

Re: Changes to sinkhole?

Unlock your full community experience!

Resolved! Server Monitoring Not Connected

Resolved! Multiple malicious scans from the same source address - can I block IP automatically

Resolved! Which log format is best for syslog , CEF or LEEF

Resolved! URL Filtering & Blocked Countries Response page

Resolved! Global Protect - Newly Imaged Laptop, first time login before Windows login

Resolved! Restricting Global protect VPN access to specific countries

Resolved! How to configure multiple routes at once

Resolved! Botnet Report Missing 8.1