UPDATE 11/8/23 11:43 a.m. EST:
LIVEcommunity’s System Update will be delayed. This means your use of LIVEcommunity will not be impacted this week (11/8-9), and you can proceed with business as usual.
Thank you again for your patience and stay tuned
...
We are excited to announce a new Engineering Blogs section on LIVEcommunity, exclusively curated by Palo Alto Networks engineers!
This dedicated area will be home to technical posts about Palo Alto Networks innovations to build scalable and reliabl
...
Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello Community,
I hope i am in the right place to ask this question. I am working on building an API set up that will pull Global protect user information such as hostname, IP, etc... That data will then be fed into infoblox as our central dns sourc
...
Hello,
So, we currently authenticate administrators to our PA's via Radius (TACACS). Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available?
Thanks!
Hi all,
I've been working with a number of customers lately who have been trying to gather a list of in-flight wifi domains that they need to allow as GlobalProtect Enforcer exceptions and I thought I'd share them here. I'd also ask that you please
...
Hello everyone, I just wanted to clarify/confirm the proper upgrade path to latest preferred 11.0.2-h2. We are currently on version 9.1.12-h3. From what I have gathered, would the below steps be the proper steps and path?
1. Download and install
...
There are no fields related to rule hit count or any way to identify unused rules in Panorama custom reports. Is there a way to get a consolidated view of unused rules across all device groups at once and not just through the policy page per device g
...
Hello
We are detecting sporadic CPU spikes on a FW 5410 version 10.2.4 , the average is fine however, we observe sporadic spikes of 95% 96% ...100%. Before with the old FW model we did not have this problem and we have not changed any configuration.
W
...
Hi,
Can someone explain the differences between the any, allow, default, and optimize lists?
The explanation in the Palo Alto documentation is quite vague on this matter.
We're looking into using this to filter o365 access, but unsure which list to
...
Hi, we are trying to generate a new elf-signed certificate in Panorama and we receive this error: Failed to insert certificate into configuration. Failed to find beginning of certificate. Make sure certificate starts with BEGIN CERTIFICATE tag.
This
...
Hi All,
As captioned in subject, would like to get some clarity on the tcp-rst-from-client and tcp-rst-from-server session end reasons on monitor traffic.
Even with successful communication between User's source IP and Dst IP, we are seeing tcp-rst-
...
We have a VPN tunnel and would like to know if there is an SNMP table that can be polled for the status of the tunnel being up or down.
We are aware there are traps that provide update when the tunnel goes down.
However, we are looking to establish
...
Hi Support,
we recently upgrade PAN-OS version 10.1.10-h1 but encounter issue error message "timed out while getting config lock"
then we have confirm with Palo alto TAC engineering team that this issue cause by bug PAN-229942 and the fix version P
...
Purchased a 440 lab unit for my personal lab through my previous employer who is no longer in business (and inaccessible email) so I need to now register it with my own personal email but am having trouble. Trying to study for PCNSE after getting my
...
Hello.
I have as a goal to upgrade the palo alto firewall from VM100 to VM300.
I am in a process of understanding the process, so I am wondering if I could get some assistance from this forum.
Thank you in advance.
Going through the guide
Upgrade
...
Hi,
Related to the new Emergency Update Required - PAN-OS Root and Default Certificate Expiration
After you do the workaround to renew the certificate. Is there any way to check the new validation date for this internal cetificates to check its
...
While attempting to synchronize an on-premises server with Cloud Identity Engine, we encountered the following error
Confirm the domain name configured on the agent matches the Canonical Name of the domain controller to ensure Cloud Identity Engine
...
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
Raido_Rattameis
