General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Software Upgrade

Hi,

Is it possible to upgrade PAN-OS manually without licence ?

DNS Signature Lists

Does anyone know any free External Dynamic Lists for DNS signatures to use in conjunction with the Palo DNS Signatures? We would like some extra protection for our anti-spyware protection.

Monitor of IPSec tunnel

What is the best way to monitor an IPSec tunnel on the PA, I don't see anything in the traffic logs at all just the systeme logs

Resolved! Decoder function

Need to confirm in PA decoder does content id app id and antivirus detection.?

Also once session is offloaded then function of decoder is finished?

Resolved! Can you enable pfs on a pa ipsec tunnel

Can you enable pfs on a pa ipsec tunnel? If so where do you do it

LDAP is not sending framedIPAddress for GlobalProtect Static Assignment

We are trying to configure static IP assignment in globalprotect and have selected the "Retrieve framed ip address" option on the client gateway. I've also selected "Static IP Assignment" under the Dial-In tab in AD for the users and given them IPs

...

Commits and Firmware Upgrades Failing

I've got a couple of support tickets open on my issues just seeing if anyone has any suggestions/ideas as Support I wait for support to help me out.

Configuration: 2x PA-5220's in HA (Active-Passive)

Code: 8.0.11-h1 (Moving to 8.0.12 per PA recommendat

...

log compression in Palo alto

Need to know if palo alto firewall or Panorama supports log compression or not?

Resolved! when we download the software do not install it?

when we download only major PAN OS but do not install it?

is it when we do major version from 7.1 t 8.0?

or when from

8.0 to 8.1?

Panorama configuration is over 80MB

I am getting the following system log message on my Panorama dashboard:

The current configuration is 81MB, which exceeds the supported limit of 80MB. We highly recommend that you reduce the configuration size to within 80MB.

What are the potential

...

Resolved! url database - learning new urls from cloud

when new websites comes up we see that it is under unknown category

one option is to ask PA to re category that.

in some cases we see that after few days that websites is not under known category and is reachable.

How does PA cloud database keeps t

...

Palo Alto behind ReverseProxy, how block real IP ?

Hello,

I have many website behind my Palo Alto.

In front of many websites (and then Palo Alto), I have Reverse Proxy.

Into traffic logs I see Reverse proxy IP, not the real visitor IP.

I have enabled "Use X-Forwarded-For" and now I see Real IP into colu

...

Resolved! Panorama Objects defined in ancestors will take higher precedence.

i am unable to understand Objects defined in ancestors will take higher precedence. what does it mean?

i read the admin guide but still unable to understand

any help is appreciated?

Resolved! config push from panorama to HA PA

New configuration is pushed from Panorama to a pair of firewalls that are configured as an active/passive HA pair.

will both PA active and passive syn theconfig ?

Pre-Logon Machine Certificate placement

When doing pre-logon with machine certificate, where does the certificate need to be placed? Documentation says to put it into computer>personal, but i am unable to do this via GPO directly. Can it be placed into any of the other stores?

Discussions

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

Ensuring a Safe and Secure Community: How You Can Help

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Software Upgrade

DNS Signature Lists

Monitor of IPSec tunnel

Resolved! Decoder function

Resolved! Can you enable pfs on a pa ipsec tunnel

LDAP is not sending framedIPAddress for GlobalProtect Static Assignment

Commits and Firmware Upgrades Failing

log compression in Palo alto

Resolved! when we download the software do not install it?

Panorama configuration is over 80MB

Resolved! url database - learning new urls from cloud

Palo Alto behind ReverseProxy, how block real IP ?

Resolved! Panorama Objects defined in ancestors will take higher precedence.

Resolved! config push from panorama to HA PA

Pre-Logon Machine Certificate placement

Upgrade from version 10.2.7-h8 to 10.2.11-h2

IPSec setup with certificate

UNABLE TO PING MANAGEMENT INTERFACE FROM LAN

Site flagged as GRAYWARE Please Help!!

HA State is "not sycned" even though Sync Task is completed on Peer (Passive) Gerät)

Re: User ID agent not starting.

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Re: Sofware Upgrade broken? "An active license is required for this feature"

Re: Cannot see Dynamic IP lists

Recommended PAN-OS version

Unlock your full community experience!

Resolved! Decoder function

Resolved! Can you enable pfs on a pa ipsec tunnel

Resolved! when we download the software do not install it?

Resolved! url database - learning new urls from cloud

Resolved! Panorama Objects defined in ancestors will take higher precedence.

Resolved! config push from panorama to HA PA