General Topics
Showing results for 
Search instead for 
Did you mean: 
We are conducting regularly scheduled maintenance over the weekend, which could cause some downtime on LIVEcommunity. We apologize for any inconvenience.
General Topics


Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 


In the past six


jforsythe by Community Team Member
  • 1 replies

Resolved! VMware ESXi 6.0 and PA VMs

Is VMware ESXi with vSphere 6.0 supported?

The technical documentation for the 6.1 virtual appliances states: "VMware ESXi with vSphere 5.0, 5.1, and 5.5 for VM-Series running PAN-OS 6.1."

And the 7.0 documentation states: "VMware ESXi with vSphere 5.1


Resolved! OSPF pocket in an EIGRP network

I am putting a PA firewall in our datacenter and am looking to have the firewall advertise the protected subnets out to the rest of the network.  However, the rest of the network uses EIGRP, so the datacenter switch and the PA firewall will need to b


DMast by L2 Linker
  • 2 replies

Resolved! Policies >> Security

Unsure quite how to phrase my question. Under Policies >> Security:


I have a Rule way at the top for McAfee ePO; tcp; port 8443.

Settings that I have set are:

 Source Zone: Trust     Source: IP address for a specific internal host 

 Destination Zone: Un


Some Users not Mapping in User-ID

Hi All,

I'm currently experiencing some issues with user-id mapping. Some users are not being mapped to IP addresses.


Current setup: I have 3 domain controllers - all have Service Accounts with correct privileges. They are also showing as 'Connecte


Bocsa by L3 Networker
  • 9 replies

Resolved! Applications On Non-Standard Ports

It's perfectly possible I'm being unusually dumb here, but I can't see an elegant way of allowing application usage on non-standard ports - for example ssh on tcp/32777. The obvious way of doing it is to allow a rule that allows appid:ssh on service:


visualize custom regions on traffic/threat map

Is it possilbe to show custom regions with gps coordinations on the threat/traffic map with the correct gps coordinates?


We have set custom regions for departments with private subnets and gps coordinations.

In the traffic or threat map we can only se



NAT question when migrating config.

Converting config from Nortel Connectivty switch to PA200.

3 interfaces

untrust - public ip -

trust:private ip -



There is one to one mapping of few untrust ip to trust ips( to access trust ips from ou


Moving a VSYS from one PA device to another


Question here , how can we move a VSYS from one device to another ? please note that in this scenario we cannot backup everything a restore on target since target is running other things that need to be running .

Any ideas ? what are important th


Top Solution Authors