General Topics

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Move firewall to new Panorama

Hi All,

We currently have 2 Panoramas (virtual) managing different firewalls.. We'd like to move all firewalls to 1 pano, so we can retire the other one. What's the best/safest way to accomplish that? Is there a way to avoid having duplicate obje

...

Do I need to deploy a switch between 2xPA firewall (Active-Passive) and 1xJuniper MX router ?

Do I need to deploy a switch between PA firewall (AP) and a Juniper Router in order to have an aggregate ethernet interface (AE) connected? Please refer to the diagram attached.

The setup is below:

PA-1 (A)-------------PA-2 (P)

|

...

CLI Rename Command Syntax - Rename GlobalProtect Gateway

Totally new to Palo Alto here. I'm looking to rename an existing GlobalProtect gateway on our PA-450.

I have found some posts indicating that this can be done from the CLI of the firewall by using the "rename" command from CLI to update the "GATEWA

...

Next update version available that supports 11.0.2-h2

I have the PA-1410 series. The software version has been updated to 11.0.2-h2.

When is the next available update version that follows 11.0.2-h2.

Thanks,

Resolved! Decrypt Gmail messages

Hello All,

Newby question here, is it possible to decrypt Gmail messages and actually see what a client sent via gmail? Some times there are investigations where we need to find out if an email was sent out from someone internally. We only receive

...

Nessus scan of FW2 failed - credentials were no provided for detected PAN-OS WebUI service

When performing a NESSUS scan of FW1, errors return:

Remote host was not identified as a known device or operating system and the execution of "uname -a" failed.

NESSUS returned the following error:

Enter old password:

This NESSUS scan works on t

...

Resolved! Query for routing table

Hello, everyone.

One query.

In Palo Alto Firewalls, what is the correct command in the CLI, to "validate" if I have or don't have a route, to reach a particular destination?

The correct command is "show routing route" or "show routing fib" ???

What i

...

PAN OS 11 and DHCPv6 with Prefix Delegation

I wanted to make sure I had the settings correct for configuring DHCPv6 on my WAN interface for Starlink. I can confirm that I did get an allocation of IPv6 addressing with a /56 prefix and was successfully able to get an IPv6 address assigned to my

...

Resolved! Reports not working multi-vsys PAN-OS 11.0.2

Hi,

There's a multi-vsys PA-460 with 10.0.2 and it has been noticed that since upgrade specific report is not generating - it is blank when received in e-mail daily. To be more specific, message:

There is no DAILY-SUMMARY-REPORT summary report on T

...

Dual ISP Ipsec/BGP tunnels to Azure

Has anyone created ISP failover for tunnels to Azure gateway?

We have PA440 devices with two ISPs configured. Local networks are switched with path monitoring if ISP1 goes down.

We want the same for the IPSec tunnel to Azure.

From Azure document

...

Palo Alto SNMP OIDs for Memory RAM use and Internal Storage use

Hello good afternoon community, please support, I need to monitor some information via SNMP, among them the RAM Memory and Internal Storage ( internal HDD ) of the Palo Alto Networks firewall.

Currently I already have the SNMP OIDs for Management P

...

Resolved! PAN-OS Certificate Expiration on Dec 31 2023

Hello, we have this error message when launching palo alto:

"Urgent Action required: PAN-OS Certificate Expiration on Dec 31 2023. For details, refer to the following Customer Advisory:

https://live.paloaltonetworks.com/t5/customer-advisories/emerg

...

Panorama to VM Firewall

Hi Team,

Is it mandatory to configure the Management Interface on firewall if we plan to manage the firewalls via Panorama?

I am trying to setup connection from the firewall to manage it over the Panorama but unable to get the connection.

Even TAC wa

...

Resolved! Gateway FQDNs Equivalent in Panorama managed SASE solution

Hi All,

I need to add additional gateways for Global Protect users in different locations. After adding how to check the newly added Gateway FQDNs in the Panorama managed Prisma SASE? Because i need those FQDNs to be added in Azure as Identity Provid

...

Resolved! block file on specific endpoint cortex agent

Hello, I want to block an executable in the Cortex agent configuration but on a specific endpoint. can you help me? thank you

Cortex XDR

Discussions

Ensuring a Safe and Secure Community: How You Can Help

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀