Layer 2 Interfaces together with Vlan Interfaces or Layer 3 Interfaces

Hello Community

I am struggling to choose one of the following two configurations. Which concept would you choose?

I have a trunk between the Paloalto (PA-5060) and a switch.
In the first variant I would configure the trunk interface on the paloalto a

Fuel Spark Event Discussion: Identity Management/Zero Trust and Quantum Security (August 22, 2024)

August Spark Summit - Identity Management/Zero Trust and Quantum Security

Delve into Fuel User Group, the sister community to LIVEcommunity, tailored for Palo Alto Networks users. Free membership in Fuel brings a myriad of benefits tailored to your

Palo Alto OS Update 10.1.0 - 11.0.1

I am running the palo alto firewall in HA mode Active /Passive , and my current version is 10.1.0 , and want to upgrade till 11.0.1 , Please provide the step-by-step action. I never Updated the palo os before. 

Join Us in Welcoming LIVEcommunity's 2024-25 Cyber Elite Experts!

LIVEcommunity is pleased to announce the 2024-25 Cyber Elite Program! 

LIVEcommunity's Cyber Elite Program recognizes community experts who demonstrate excellence in participation and contributions to other members and Palo Alto Networks customers

PA220 device stuck at booting state after reboot

Hi Team,

My PA220 device stuck at booting state and unable to boot up.

State light showing Orange color. Is that hardware failure?

Or is that anything that I can check on?

DHCP Relay

I have a strange intermittent problem with DHCP relay.  I have it setup on all our firewalls, PA-220, and they relay to servers in the data center (Windows 2016).  At some point the relay stops sending offers.  I can see the discovery packet and no o

connection issue about security-client

as doc descibe , Cloud connection should be connected 

admin@paloalto-vm-10.1.9> show ctd-agent status security-client

Security Client Dlp(0)
Current cloud server: dlp.hawkeye.services-edge.paloaltonetworks.com:443
Cloud connection: disconnected
Con

New local users created not working on FW Active but yes working on FW Passive

Hello team

Currently, I have a pair of FW 1410 Version: 11.0.4-h2, passive active and I have encountered the following problem

When creating new local users, with permissions, superuser I can not access via SSH to them locally but I can do it via GUI

For AD user password reset option

Log forwarding - Filtering and Auto- tag not working

Hi there,

I had setup Log forwarding profile, where I am sending All logs to syslog server. Thats working great.

Then I added one more line where I am filtering threat logs for (severity eq critical) and (zone.src eq internet_zone)

Checking f

Nested Device Logging

Hello, 

We have set up some nested device groups, to allow for easier policy management and, as expected, when viewing traffic in Panorama we see the logs for both device groups in the parent device group and only child device group logs in the chi