General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Resolved! Deny internet traffic for a specific subnet

Hello, is it possible with palo alto firewall to deny internet traffic for a specific subnet?let's say I have this subnet: 10.100.30.0/24I want 10.100.30.0/24 to not reach the internet.What should I do?

Hello Message Interval -PANORAMA HA

Hi, What is the correct default Hello Message interval in Panorama HA? Is it 5000ms or 8000ms? I am asking this because, PA docs have quoted these two values at default at two different places. https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/high-availability/ha-timers quoting 8000ms see the screenshot taken from EDU-120, Module - Hig...

Palo alto Education, Pa 2020

Greetings. I have bought PA 2020 used without HDD. PA 2020 have No elf image at address 0x20000000 Octeon kestrel: such error on boot.What are the ways to boot my PA 2020 wich i bought used from auction?Where can i have VM images or help me please to boot my Palo alto device?What are other ways to study palo alto networks if i can't download PA...

Pulling threat intelligences feeds from tenable

Has anyone written a prototypes to ingest information from tenable or their threat intelligence?

Logging Service Subscription Added to Assets in Support Portal

All - So, I noticed something today, when logging into the PAN Support Portal. All of my NGFWs listed have had a Logging Service subscription added to them (albeit expiring in May 2019). This was not something that I did on my own, and all of them have different auth codes associated with them. Additionally, they are on the FIREWALLS, not as ...

Resolved! Paloalto regions DB

HIDo you know the Paloalto regions DB?ftp://ftp.arin.net/pub/stats/ I found this ulr, but it only shows the USA's DB.I would like to see the whole area DB.

Panorama(ESX6.5VM)のログ領域を120GB拡張する方法について

参考サイトを見て、Panorama(ESX6.5VM)のログ領域を120GB拡張する方法をいくつか試みたのですが、上手く拡張出来ず困っております。【参考サイト】https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClZfCAK https://docs.paloaltonetworks.com/panorama/8-1/panorama-admin/set-up-panorama/set-up-the-panorama-virtual-appliance/install-the-panorama-virtual-appliance/install-panorama-on-vmware/in...

Interface IP for Log collector - LC communication

I have configured Interface between 2 m500 with /24 Mask. M500-1----------eth1/5---------------------------------eth1/5---------M500-2 eth1/5 is used for collector communication. Need to confirm this is right design to have IP address on directly connected interface with /24 mask? Please confirm?

Resolved! Monitor Youtube URL

Hi Everyone, How can we view the exact url (e.g. https://www.youtube.com/watch?v=7o3Pjhs1qxM) of Youtube videos that are viewed by users. We implemented SSL decryption on Youtube site and it shows that it is "Decrypted" but monitoring logs doesn't show any or the exact URL of Youtube video played. Thanks...

Resolved! Tech support file and looking for High Virtual Memory and Commit logs

Whe we unzip the Tec support file which folder i should click on to check the commit failure and high Virtual memory utilizations?

Resolved! Firewall cache for EDLs

Hello Community, I was searching how long can the firewall have cached the EDLs if the firewall lost connectivity to the server where I host the txt file but I dind't find anything. Any clues?Thanks a lot.

Resolved! Monitoring Virtual Systems on Solarwinds

Hi All, Can I monitor my Virtual Systems on Solarwinds - SNMP and Ping? They are configured with shared aggregated interfaces and not indivdual physical interfaces. I am monitoring the device itself but would like visibility of the individual virtual systems. I read an older post that only physical interfaces could be monitored but not sure if t...

global protect: keeping clientless vpn users seperate from remote access (vpn client) users

Here's what I need:Employees using the global protect client, and vendors logging into clientless vpn and getting the apps I assign them.I do not want any vendor to be able to access the vpn client. Here's where I am:I have a GP portal and gateway assigned to the outside interface. Remote access (employees) authenticates to radius server (ACS) a...

Resolved! VRRP on switches connected to PA in active and passive mode

below we have setup https://snag.gy/3kRV8C.jpg Where switches and routers are running ospf.PA has static route to the VRRP IP of the switch. 1>>Need to know is this good design to have the VRRP backup router connected to the PA active switch? 2>>Also yesterday when we reboot the router 1 during that time we lost the internet connec...

Resolved! "Management Interface Settings" Widget Doesn't Show Under DEVICE> Management tab

I have a PA-VM-300 running 8.1.3. On the DEVICE> Management tab, I do not have the "Management Interface Settings" widget. The person who set this up, is no longer here. Is this a widget that is specified somewhere, or is it perhaps missing for some other reason? Thanks!

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Deny internet traffic for a specific subnet

Hello Message Interval -PANORAMA HA

Palo alto Education, Pa 2020

Pulling threat intelligences feeds from tenable