General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

SSL Decryption

Hello,

I have a PA-VM running on a ESX server.

I want to set up SSL Decryption on it using a SUBCA certificate chain signed by a PKI (windows server).

I check boxes "Forward to trust/untrusted certifcate"

I export the SUBCA to store it on a client machi

...

Resolved! Minimal System Requirements for Minemeld

I need to know the minimal system requirements to run Minemeld on Ubuntu 14.04 LTS.

How big does the HDD need to be and how many CPU's and RAM is needed minimal ?

Incorrect GeoIP location

Hi,

It came to my attention that our IP address: 94.23.154.203 according to paloalto geo database appears as it is located in Russian Federation, whereas RIPE and ARIN, NIC, maxmind and others state correctly it is a United Kingdom based IP address.

...

Resolved! IPSec VPN Tunnel - Tunnel interface IP address use?

Hi folks,

I am being asked to setup a new IPSec VPN Tunnel and one of the questions from their "worksheet" is what our Tunnel interface IP address is.

We have several IPSec VPN tunnels, each with their respective Tunnel Interface assigned. Most of t

...

App-ID for Tcp/1911 and Tcp/4911 used by Tridium Niagara

We are trying to add rules for Tridium Niagara application. What will be app-ids for TCP/1911 and TCP/4911? Thank you for you help.

Security policies & Schedules.

Hello,

Just a quick question. Unsure if this has been asked previously.

When applying a non-reoccuring schedule to a security policy, I have noticed in pan 8.0.x, once the schedule has expired, the policy in the security policy view does not ident

...

Resolved! Maximum number of rule per vsys ?

Hi,

I would like to clarify the maximum number of rule/policies per vsys in PA 5220. As I noticed that 5220 supported up to 20k rulea per device. So, is there any limit of rule per vsys?

https://live.paloaltonetworks.com/t5/Learning-Articles/What-is

...

Resolved! Intra-Zone Source (dynamic) NAT

Guest network (10.10.10.0/24) is in Outside zone & Internet link (11.11.11.11/24) is also in same zone.
Guests need to browse internet (say google.com)

My question is about intra-zone source NAT/PAT!

Guest, who is the source of the traffic; requires tra...

Site-to-Site VPN random issue

I have Site A setup with a site-to-site VPN with Site B. Site A contains all the resources (DC, email, fileserver, etc). The firewall in site B is configured as DHCP for the local clients. Primary DNS is setup for internal AD DC/DNS server. Secondar

...

Office 365 access advice

We are moving to Office 365 Exchange Online and may use some other Office 365 services in the near future such as SharePoint Online or OneDrive for Business.

I found the FAQ "Office 365 Access Control" and have configured the requisite custom applica

...

Group Mapping Failure

Has anyone had a problem with the group mapping authentication process? We have successfully connected to our AD/LDAP, PA sees the groups and group members, however this connection and the associated mapping fails after the initial connection. In add

...

Resolved! App-id tcp/993 having issues

New install of dual PAN 3020s on 8.0.2 that went really well for the most part and the only issue I am having now is imap(s) and Linux clients w/office 365 not working right.