General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! authetication override

Why is it necessary to enter "generate cookie for authentication override and accept cookie for the authentication override on both the portal and gateway? I would think it would make more sense to select generate cookie for authentication override o

...

logical interface packets drops

Hi,

we are experiencing this issue that we are troubleshooting from a couple of days. we have done all our checks WAN and LAN side however there is a paloalto firewall between WAN routers and core switch in a Vwire mode with an any-any rule. the only

...

Resolved! how to get CA trusted root cer for global protect url

Hi,

We have external global protect gateway with dns name.

when users browse to domain name they get warning message certificate is not trusted.

How can i get trusted cer from CA like go daddy so that when remote users download the GP client they do

...

Resolved! Global Protect client - Block inbound traffic - Internet Adapter

Hi,

The scenarios is as follows:
a) I have a Windows10-client with Global Protect (GP) version 4.1.4 installed

b) The Win10 has inbound RDP (tcp-3389) enabled so that the support can access the client remotely

c) The GP is configured with "Always On" so

...

HA/sync bug in 7.1.16

Has anyone heard about about a bug in the code of the os 7.1.16 which causes HA and sync to fail?

Ask about by license for PA-500, Renew license after End-of-sale?

Dear All,

My company device is PA-500, I'll be End-of-Sale Date at 31-Octorber-2018. But it's license will be Expires at April ,2019.

So how I can do to renewal the license? Do I buy the license after End-Of-Sale ? OR Can we renew the license befor t

...

Problem routing traffic from ipsec tunnel to ipsec tunnel

We have two PA820 boxes PA#1 & #2, both are connected via IPSec and the traffic flows without any problem
We have a TMG server to which PA#2 is connected via IPSec and traffic flows without any problem
Now we want PA#1 to be talking to TMG server via P

...

Resolved! change password to passcode in GP response page

Hi,

Need to know how can i change the password to passcode in the response page for GP and CP?

Regards

Mike

Resolved! why default gateway ip is not assigned to PC when using GP external gateway

Hi,

I have configured GP external gateway with no split tunnel.

I have configured the DHCP pool.

My PC gets ip assigned but no default gateway ip address is this by design?

All the traffic is configured to flow via tunnel.

How does routing work witho

...

Resolved! Global Protect external gateway traffic is ssl decrypted

Hi,

I have configured GP external gateway and all is well.

But i see my ssl tunnel connection from my public ip to GP public ip this traffic is decrypted.

I have no decryption policies configured for this.

this traffic is from external to external zo

...

Just want to ask if there are some updates about thi

...

Dual ISP with VPN

I'm working on configuring a branch office firewall with two ISPs and Site-to-Site VPN to our data center. The data center side has only 1 ISP connection

I'm reviewing this article again, as I've used it in the past.

https://live.paloaltonetworks.com

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

Resolved! authetication override

logical interface packets drops

Resolved! how to get CA trusted root cer for global protect url

Resolved! Global Protect client - Block inbound traffic - Internet Adapter

HA/sync bug in 7.1.16

Ask about by license for PA-500, Renew license after End-of-sale?

Problem routing traffic from ipsec tunnel to ipsec tunnel

Resolved! change password to passcode in GP response page

Resolved! why default gateway ip is not assigned to PC when using GP external gateway

Resolved! Global Protect external gateway traffic is ssl decrypted

Templates and Interface IPs

New to Palo Alto

Resolved! Is there a place to submit changes to Application Definitions?

Globalprotect connection speed is reallly slow in China mainland

Dual ISP with VPN

[API] - User-ID

Issues with Pre-Defined Decryption Exclusion

Error when logged into support account

VM series firewalls and interfaces

Client-to-Site IKEv2 IPSec without GlobalProtect

Re: GlobalProtect 6.3.3

Re: GlobalProtect 6.3.3

Re: Issues with Pre-Defined Decryption Exclusion

Re: VM series firewalls and interfaces

Re: Support PAN-OS Software Release Guidance

Unlock your full community experience!

Rules and Best Practices

Resolved! authetication override

Resolved! how to get CA trusted root cer for global protect url

Resolved! Global Protect client - Block inbound traffic - Internet Adapter

Resolved! change password to passcode in GP response page

Resolved! why default gateway ip is not assigned to PC when using GP external gateway

Resolved! Global Protect external gateway traffic is ssl decrypted

Resolved! Is there a place to submit changes to Application Definitions?