General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

[UPDATED] Community Notice: Change of Email Address for Live Community Notifications

Update: The sender address for Live Community email notifications was changed at approx 8:45am PDT on June 14, 2018.

Hello valued Live Community members!

On June 14, 2018, we are making a change to the email address of the Live Community notific

...

Resolved! PAN EDLs and Bitbucket

I am currently working with EDLs that use Bitbucket repos as the external sources. I have 2 EDL types: IP and URL. Both are supposed to allow/whitelist.

The ask was for engineers to be able to pull/commit/push, etc to those repos when they want to al

...

GP Error( 51): Driver is not installed, reinstall it now!

Unable to connect to a VPN server.

OS: Wondows 10 Pro

Error message:

(T11064) 02/26/18 07:18:22:506 Debug(1346): no flushdns key set
(T11064) 02/26/18 07:18:22:506 Debug(5067): DLSA, RestoreProxySetting now
(T11064) 02/26/18 07:18:22:506 Debug(5084): Pro

...

Resolved! Prototype not found on every update

Hi,

Every time Minemeld auto-update ( I don't know why this is automatic and if it is recommended). We have a custom miner with a prototype created manually and every time Minemeld updates seems to generate a new folder like "0.9.48" on /opt/minemeld

...

Multiple globalprotect gateways on one appliance?

I am implementing a remote access vpn solution but have been briefed that some users will need Different IP address than others. How best to implement this?

Resolved! How to interrupt or cancel cli output

I cannot find how to cancel or interrupt the cli output. Specifically the " show config running" command.

thnks in advance

vnt90

Resolved! External dynamic list failing at refresh

This should be simple, but i have been at it for much too long and support hasnt been able to figure it out. Hoping someone here has had this issue.

I have a simple EDL to allow (type IP) the source is https and it's a txt file on a bitbucket repo.

I

...

PBF monitor behavior not working

Hello, i'm configuring two PBF in order to isolate traffic between two destinations servers on two different ISP (without fail-over).

I have configured the PBFs with a monitor profile with Wait Recover option enabled.

I see that the traffic is being pr

...

Resolved! Profies confusion

What does host type(server/client) in profies

and track by source / source and destinantion signify

Suspicious HTTP Response Found (ID 54319) after updated to 8029-4784

Hi,

Anyone else notices increase amount of Suspicious HTTP Response Found ID 54319 after installed AppID 8029-4784?.

The threat vault description This signature detects a suspicious HTTP response

Category protocol anomaly

PANOS Min version 8.0.0

Severi

...

Panorama 8.0 log retention

Hello,

We recently upgraded our Panorama VM from PanOS 7.1 to PanOS 8.0, currently running 8.0.8.

After the upgrade and the migration process, we noticed that our traffic log retention capacity decreased to over a third (from around 100 days to aroun

...

Global Protect config problem: The server certificate is invalid.

Hello,

we are not able to connect to one of our Gateways anymore. We get the error: The server certificate is invalid.

I checked the following but this looks correct:

Incorrect time settings on the firewall.
Check the certificate's validation date

...

blocking unknow tcp and udp

The 2017 Palo alto networks best practices recommends blacklisting/blocking unknow-tcp and udp, my first thought is has something changed since this article ?

https://live.paloaltonetworks.com/t5/Management-Articles/Pro-Tips-Unknown-Applications/ta-p/

...

Resolved! Is EDU 110 Training free?

I see that there are a few posts about similar training (EDU 101) being free, but I wanted some clarification on the other self paced training options. I'm a Palo Alto customer, and I see that I have access to "activate" a large number of training co

...

Resolved! Troubleshooting GlobalProtect

PA220, 8.1.1, GPClient 4.1.1, GP license activated.

Connecting to the GPportal/gateway works fine. Traffic routes as expected.
We're still testing, so access is severly limited and policies wide open once connected. Literally, everything is allowed f

...

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource