General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Join Us in Welcoming LIVEcommunity's 2024-25 Cyber Elite Experts!

LIVEcommunity is pleased to announce the 2024-25 Cyber Elite Program!

LIVEcommunity's Cyber Elite Program recognizes community experts who demonstrate excellence in participation and contributions to other members and Palo Alto Networks customers

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Global Protect not working after upgrade

Hi

I have upgraded my passive palo alto firewall to 7.1.20 post which global protect portal is not working.

I'm seeing SSL session cache request comming in from external source. But the webpage page cannot load after adding the exception.

Same works

...

Resolved! Fqdn Refresh job failed on passive device

we are getting email alert for the Fqdn Refresh job failed on passive device

does passive device need to do the fqdn refresh?

Management access for permitted IPs

hi

i am trying to add 10/8 as premitted IP subnet in mgmt interface but it seems to not work? anyone else has experienced this?

Home internet acccess with 1gb but...

Hello,

Looking for suggestions and recommendation, just got an offer from the ISP to upgrade the Internet speed to 1Gig down and 10Mbps up for a very good price. Except I have a PA220, the spec is good for 500Mbps with AppID and 150Mbps with threat

...

Destination mac

I was having issues with DHCP being blocked, so I can a packet capture from the PA to see if I could tell was was blocking the DHCP traffic and if it could possbile be the PA. It shows the mac address of the interface on the PA as the source and then

...

Resolved! LDAP Authentication - Parse error for maxPwdAge attr search

Hi,

I'm trying to setup GlobalProtect with Prelogon, but I'm having trouble authenticating the user at the portal. I'm trying to test just the user authentication with the Windows Server 2016 ActiveDirectory DC at 192.168.###.9. Using the Pan-OS 8.0

...

Global protect with loopback ip address and port number

Hello all

We have one public IP address and two groups of users who must connect to Head Office but get different policies

We decide to use loopback ip address and NAT it to the public one but with different port (for example loopback ip 1.1.1.1 and pu

...

How does an end-user collect logs from GlobalProtect agent when the advanced view is disabled

I want to collect log files from a GlobalProtect agent 4.1.2 but our gateway policy is set to disable the admin view.

By doing this, the user can't colelct any log files anymore.

Is there another way to collect logs ?

Is it secure ?

Hello all

We have configured GP REMOTE ACCESS VPN with OTP authentication.

Ones we try to connect to Portal it failed to pass at the first time only second time.In Radius server we see that it tries to authenticate first the Ldap account then VPN acco

...

Resolved! ha syn failure - url filtering

on passive PA we are seeing

( description contains 'No synching file to peer because local state is not Active (Passive).' )

is this normal?

Cannot Sync Running Config in HA active/passive

Hi All,

I have a PA3020 with 7.0.5-h2 PAN-os version.

I have tried different times to sync manually the running config on passive member without success.

I can clearly see from the Active Member's "ha_agent.log" these errors:

=========================

(

...

Resolved! MineMeld and Office 365

I've used MineMeld in the past and I've been very happy with all of it's functions. Recently, I've started a new job and I've recommended MineMeld as a solution to get O365 IP's into the firewall for writing policy. Microsoft announced on April 2nd

...

Resolved! Changing Firewall Rule Names (Security Policies)

I need to rename a whole bunch of firewall rules (Security Policies).

Ive done a search here and looked in the manual; I think I know the answer.

I can change Firewall / NAT rule names as needed? There will be nothing else I have to change right? This

...

Block page when searching google with safesearch enabled