UPDATE 11/8/23 11:43 a.m. EST:
LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.
Thank you again for your patience and stay tuned
...
We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!
This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl
...
Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi. Did anyone know if it is possible to use MFA (for examlpe with DUO) for Global Protect Clientless VPN?
Best regards, Markus
According to Google, the only way to block access to consumer gmail accounts, is to intercept the traffic, and insert a HTTP header for all traffic going to google.com. Obviously PAN-OS can perform SSL inspection, but can it do the HTTP header inser
...
Hello to all and sorry if this has been posted before. We are new to Palo Alto Networks Firewall. We are in the process of procurring and installing our first PAN device. With that in mind we do have quite a bit of experience with Cisco ASA FW but no
...
Dear community,
I must update our windows server 2012 whit a update in order to resolv a vulnerability whit adobe flash palyer:
windows Server 2012 R2 2018-03 Security Update for Adobe Flash Player for Windows Server 2012 for x64-based Systems (KB4
...
Hello,
I have a customer wanting to use multiple ids such as bobsmith, bobs@yahoo.com and bsmith@paloaltontworks.com.
I have yet to find documentatation supporting this. Is it possible? If so how? Thank you.
I have my MFA (using Duo) sort of working with non-browser based applications. However I am experiencing an issue that is an identical result whether I use SSH (putty) or RDP (remote desktop). Basically I am timing out because I cannot get through th
...
Hi Folks,
We currently use our PA 3020 firewalls with Layer 3 interfaces, Internet plugin directly, and doing all the routing for our network. Learned routing from L3 interfaces and manual static route entry. No routing protocols at all. We have o
...
Dear valued Palo Alto Networks customer,
Please be advised that we have a planned service maintenance for the Cloud Services- Logging Service Infrastructure scheduled from 03/20/2018 10:00am PDT to 03/20/2018 4:00 pm PDT.
We expect the service to
...
Curious if anyone is successfully using the commvault application within their Palo Alto application policies? We tried it and it is not working at all to detect our CommVault application traffic. The details on the application itself seem quite old.
after switching from a PA VM on an ESX to a PA-220 i noticed a huge decrease in throughput from speedtest.net - with the VM in vwire or l2 mode i am getting rates consistent with native line speed (around 500Mbit/s down and 250Mbit/s upload). With th
...
Is there a password limit to the new Global Protect client 4.1 for Windows? It seems to stop at 20 characters. It made me chuckle to think that PA was limiting the number of characters we can use.
Thanks,
Steve
This was also posted on the Cisco forum because I'm not sure yet what is the problem's root cause. So I'd appreciate insigt from the Palo experts as well. Below is the problem:
Each 7K can ping the active-pal. Active-Pal is connected to 7K A, so Act
...
Hello,
We’re currently looking at a VMWare to Hyper-V migration. One of our concerns is that it appears our Panorama virtual appliance isn’t supported to run on Hyper-V.
Do you know if Palo Alto are adding support for this anytime soon?
I notice tha
...
I have configured the syslogminer node as per https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262
I have checked the firewall is sending syslog for threat events on TCP 13514, BSD format, LOG_USER facility and I
...
Hello PA Community!
We migrated to laptops and GlobalProtect always-on pre-login VPN solution several months back. We are currently at a point where around 50% of our clients haven't talked to WSUS in quite some time because their DNS records are get
...
Raido_Rattameis
aleksandar.asta
TomYoung
on:
PA OS upgrade issue and question
aleksandar.asta
