General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
We are conducting regularly scheduled maintenance over the weekend, which could cause some downtime on LIVEcommunity. We apologize for any inconvenience.
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 637 Views
  • 1 replies
  • 4 Likes

VPN Status

hey all

i have a 2 sites and we have between them 2 VPN tunnels (different ISPs) and on top of the VPN i am running OSPF

for some reason i see a lot of times that the IKE Gateway status is RED , but on the SSH i do see that i have an IKE-SA.

what i noti

...

vpn status.png
minow by L4 Transporter
  • 595 Views
  • 2 replies
  • 0 Likes

Problems Removing Commit Locks

Our Panorama is running PANOS v7.1.6 and is configured to "Automatically Acquire Commit Lock". We have several firewall system administrators. If anyone of us makes a change, a commit lock is automatically taken for the user who makes the change. Two

...

Proper SNMP v3 Configuration

Hello,

 

One of our customer is having "Palo Alto Networks PA-500 Series Firewall".

For SNMP v2 all ok, but customer wants to start using SNMP v3.

Please, advice with setting proper SNMP v3 to monitor from Zabbix.

 

I`m not familiar with Palo Alto devices.

...

FSC_DS by L0 Member
  • 1324 Views
  • 2 replies
  • 0 Likes

Apply new evaluation license to exiting VM

I have a VM where evaluation license has expired .when try to download software complains not registered.

We have new eval license. a team member has gone and register uuid and cpu id from the exisiting vm and has got new serial number. but the vm sti

...

Commit Fail Phase1 sslvpn

hey

 

i am gtting commit fail on phase1 abort, and it looks like the SSL VPN proccess how can i troubleshoot it ? 

 

show management-clients

Client PRI State Progress
-------------------------------------------------------------------------
routed 30 P1-abo

...

minow by L4 Transporter
  • 5739 Views
  • 9 replies
  • 0 Likes

What is an advantage of purchasing VM-200?

https://www.paloaltonetworks.com/content/pan/en_US/products/product-comparison.html?chosen=vm-200,vm-100

 

If I compare these two model, specification is same, but the price is different between both two. (VM-100 is cheaper)

What is an advantage of VM-2

...

emr_1 by L5 Sessionator
  • 783 Views
  • 2 replies
  • 0 Likes

Resolved! Clientless Remote Access VPN

Hello,

We've just purchased a PA-3020 in order to replace an old Checkpoint. We have a few site-to-site VPN, and some other VPNs using a Checkpoint client. I would like to get rid of the clients and use some king of clientless VPN, so I won't be bothe

...

Resolved! Securing YUM

Currently there is a requirement for all our remote linux servers (Which have static IPs and numbers around 250) to have access to various public YUM servers. The public YUM servers (I am told) cannot be defined statically because they constantly cha

...

Feature Request experience

Hello,

 

How many of the community members have submitted feature request(s) and implemented ?  How long did it take for the FR to get implemented ?

 

Thanks for sharing,

 

panos_syslog IP indicator - withdraw

 

I am trying to create an IPv4 indicator list based on PAN-OS threat logs.

Below is the rule code attached to the syslogminer class stdlib.syslogMiner.

 

 

RULE:

age_out:
   default: last_seen+30d
   interval: 1800
   sudden_death: false
attributes:
   c

...

MineMeld real-world usage to reduce threats?

So far I'm using MineMeld to pull Dshield and Spamhaus feeds to use to block inbound connections to our internet facing servers.

 

Whilst there are loads of miners I'd love to know which ones people have found "safe" enough to use on production inbou

...

Global Protect Windows 10

Hey experts!

I have a new Windows 10 notebook and Global Protect Client 2.3.4-4 installed.

However, the connect button is greyed out.

I read on the Palo Alto site that the recommended minimum agent version is 3.0.3.

So is the problem my 2.3.4 version? Do

...

MPI-AE by L4 Transporter
  • 1880 Views
  • 7 replies
  • 0 Likes
Top Solution Authors