General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! 5250 HA1 over SFP question

I have a customer who is implementing a pair of 5250 in active/passive. The firewalls are in separate DCs that are connected with fibre. It seems HA2 over the SFP ports is OK but HA1 seems to only work over the 2 AUX ports not any of the data ports.

...

Scheduling support sessions with end-users

I was just wondering if Palo Alto would consider scheduling support sessions with customers via https://www.timetrade.com/ or something similar. This would help to manage time coordinating support sessions.

Thanks,

Resolved! VPN over MetroE

I've been given an L2 handoff from Comcast from our data center to our co-location. I can move switched traffic over the link between the Palos at both sites with no issues. My problem comes when I try to add L3 and a a tunnel to the link. I've set u

...

xauth use on global protect tunnels

how many are using xauth on the global protect tunnels and why ? We are using it because we have users using native clients on PC's and phones (don't want to pay for the mobile license for on)?

Let me know what you think and the pros and cons of usin

...

PaloAlto Networks Discloses Confidential Security Information to Third Parties w/o customer consent

I just was emailed a Palo Alto Networks security report listing information on all of the wildfire submissions from our organization. This email came from a vendor that we had never purchased Palo Alto products from and contained detailed informati

...

Bootstrap the VM-Series Firewall on ESXi

I have an OVA of PA VM-100 series version 8.0.5.

I'm trying to follow the article for "Bootstrap the VM-Series Firewall on ESXi" at:

https://www.paloaltonetworks.com/documentation/71/virtualization/virtualization/bootstrap-the-vm-series-firewall/boots

...

Resolved! How do I block Image search?

I am fairly new to Palo's and I am trying to figure out how I can block search engine image searches. I know there are currently no real app-ids that cover this and just wondering if anyone has a way to block all image search results on the big s

...

SSH decrypt and not decrypt

Hi.

I have an ERP server on the inside which must be access from supplier via SSH. Trying both using proxy and no decrypt but always getting Aged out in traffic monitor.

I don't have access to the ERP system but I got the routing printed and it look

...

Resolved! SIP traffic between a Mitel IPBX and a sip server

HI,

We have a PA3020 and we are trying to create a trunksip between a Mitel IPBX and a SIP server and it doesn't work.

I can't see the traffic in logs even if I create a rule to see it but I can see it if I do "Packet Capture", I see the REGISTER req

...

Resolved! EOL dates

I was looking for EOL announcements for a couple of PA models and found this link: https://www.paloaltonetworks.com/services/support/end-of-life-announcements/hardware-end-of-life-dates. It doesn’t have dates for the 3032 or the 500. I just wanted to

...

8.1 clientless VPN missing icons

I just updated my home 220 to 8.1 and my clientless vpn icons no longer show up. I can see them when I click the preview button on the clientless application popup in the management GUI. I tried re adding the icons to the configuration, but they stil

...

Static Route Removal

Default route via ISP-A (primary) has not yet recovered, even though the monitored IP address (DNS server of ISP-A) is already rechable via the interface connected to ISP-A router. (tested via ping source x.x.x.x host y.y.y.y)

I have seen the logs fr

...

PNCSE practice questions I don't get at all...

Hello

So I'm preparing taking the PNCSE 8.0 certification exam.
as part of my prep I took the practice exam on the palo alto site.
it went fairly well( 16 wrong, so failed) however an emergency came up so I rushed through and later in reviewing I found

...