General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

ARP refresh in firewall if replacing the connected device

we are changing the core device hardware connected to Palo alto firewall inside interface. To minimize downtime we will be moving inside interface of secondary passive firewall to new secondary core and then we will make it active by suspending prima

...

Resolved! Features column in Network Interface shows an IPSec Gateway

I have a HA pair of PA 5220s at the HQ location and a PA-850 at a secondary DR location. We have about 100 remote sites that have a primary Site-to-Site VPN connection to HQ and a secondary connection to the DR location. Each of which have their own

...

Impact of license expiry

I need the impact below license expiry. This is not in terms of any OS version. This is a gen query.

-SD WAN License
-BrightCloud URL Filtering
-GlobalProtect Portal
-GlobalProtect Gateway

I intend to get the below bullets:-

-What one can s

...

description contains 'Failed to connect to address: x.x.x.x port: 3978, conn id: triallr-x.x.x.x-x.x.x.x' )

ipsec vpn, global protect is not set.

34.122.191.141 > google address

200.200.200.200 > loopback address

I found a Cortex logging service error, but I don't know how to solve it in detail.

https://knowledgebase.paloaltonetworks.com/KCSArti

...

PBF Rules being ignored

I have setup several PBFs to force traffic to use a specific egress interface for monitoring that particular path. I then setup a ping monitor on one of the servers, Source Address 192.168.200.15, to ping several different Destination Addresses (DA)

...

Resolved! Confused about HA Path Monitoring recovery (Preemptive loop)

Hello,

So this is a document: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClhJCAS

Which states:

When a link or path monitoring (or both) failure condition is detected by the HA daemon on the Active device, it moves in non-f

...

Active Directory Users & Computers slow over GlobalProtect

We are experience an issue that I am curious if anyone else has encountered. When any of us IT folk are VPN'd in via GlobalProtect (tested on different internet connections, hardwired and wifi) whenever we open up MSFT Management Console Active Direc

...

New Area for Engineering Blogs on LIVEcommunity!

We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!

This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl

...

Resolved! Seeing error on commit: Management Server failed to send ID request to client device.

Seeing error on commit: Management Server failed to send ID request to client device.

Resolution
Restart both management and device server. Run the following commands:
> debug software restart device-server
> debug software restart management-server

Ar

...

New RCE on GlobalProtect if you didnt change the master key

Hello All,

I saw the below on twitter...

I wrote a tool to check master key configuration on palo alto firewalls and so far I haven't run into any instances of people actually changing the master key from p1a2l3o4a5l6t7o8

gist.githu

...

invalid password and username PA-VM 10

hi panel I recently downloaded the PA-VM 10. here are the characteristics RAM:6.5 processors:2 hard disk:60GB 2 network card in NAT 1a host-only card 1one in LAN segment I am still stuck at the login level I use admin admin at the login and password ...

URL Filtering wrong categorization

Hi Members,

Whenever the users try to access our Internal server, The traffic is blocked in URL filtering category as adult.

Can Someone help me how the palo alto categorize my ip address as Adult category the URL shown as pornhub.com.

but when I

...

Resolved! HSBI and HA

Folks,

I would like understand the difference between HSBI and HA1, HA1B, HA2, HA2B

As per my understanding

HA1 for control & HA1B for backup link

HA2 for data & HA2B for backup link

control carries heartbeats and communication

Dara traffic carri

...

Resolved! Panorama SDWAN commit "Failed plugin validation"

I've gone through the full beacon modules and went through instructions here on how to setup SDWAN in my lab (so I think I'm configuring it correctly): https://docs.paloaltonetworks.com/sd-wan/2-2/sd-wan-admin/configure-sd-wan

When I get to the par

...

To know Palo Alto free course

To know free course Palo Alto like fortinet nse 1 2 & 3

Discussions

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

ARP refresh in firewall if replacing the connected device

Resolved! Features column in Network Interface shows an IPSec Gateway

Impact of license expiry

description contains 'Failed to connect to address: x.x.x.x port: 3978, conn id: triallr-x.x.x.x-x.x.x.x' )

PBF Rules being ignored

Resolved! Confused about HA Path Monitoring recovery (Preemptive loop)

Active Directory Users & Computers slow over GlobalProtect

New Area for Engineering Blogs on LIVEcommunity!

Resolved! Seeing error on commit: Management Server failed to send ID request to client device.

New RCE on GlobalProtect if you didnt change the master key

invalid password and username PA-VM 10

URL Filtering wrong categorization

Resolved! HSBI and HA

Resolved! Panorama SDWAN commit "Failed plugin validation"

To know Palo Alto free course

How to get all EDL entries with XML api?

new to palo alto

Registrierung von Geräten

Ansible OSPF Validation Error

Can Azure SAML work together with Duo?

PAN-GPLimiter: Limit Concurrent GlobalProtect Sessions/Connections Per Unique User

Fuel Spark Event Discussion: Identity Management/Zero Trust and Quantum Security (August 22, 2024)

Re: Migrating from PA-5250 to PA-5410

Re: Migrating from PA-5250 to PA-5410

Re: request sc3 reset API

Unlock your full community experience!

Resolved! Features column in Network Interface shows an IPSec Gateway

Resolved! Confused about HA Path Monitoring recovery (Preemptive loop)

Resolved! Seeing error on commit: Management Server failed to send ID request to client device.

Resolved! HSBI and HA

Resolved! Panorama SDWAN commit "Failed plugin validation"