General Topics

Join Us in Welcoming LIVEcommunity's 2024-25 Cyber Elite Experts!

LIVEcommunity is pleased to announce the 2024-25 Cyber Elite Program!

LIVEcommunity's Cyber Elite Program recognizes community experts who demonstrate excellence in participation and contributions to other members and Palo Alto Networks customers

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

VM PA to VM PC Unable to ping.

Hi,

I've created a VM LAB. But, I facing some issue.

VM Details: VMnet3: 10.128.1.0 (HOST)

PA Details: int 1/1 10.128.1.254/24 mac: aaaaaaa1(sampleonly)

PC: IP: 10.128.1.2

DGW: 10.128.1.254

I already enable ping on Profile(PA). Disabled Firewall on PC

...

Cascading PBF policies for traffic fail over between two sites both using PAN firewalls?

My goal is to sent traffic to/from two sites with three levels of redundancy. Both sites have redundant PA-3020s. First, traffic goes through a L2 point-to-point circuit. If this fails and is disabled, an IPSec tunnel takes over. Lastly, a third

...

Issue with connecting to GlobalProtect

Hello,

I've been using GlobalProtect before to connect to my univeristy's network when I'm outside campus. However, recetnly, I've not been able to conenct to the network. I get a message reading "Resend credential".

I'm hoping someone could help me

...

difference between revert ti running configuration vs load named config snapshot

Resolved! Detailed view miners

Hi,

Do we can have a table view on the minors were you can see easily confidence level, state experimental or stable, ... ?

Regards,

Kevin

NTP sync failing after PAN-OS 7.0 upgrade

I upgraded Panorama to 7.0 and then 7.0.1 recently and it seems to have broken my ntp synchronization in Panorama. Now I get "NTP sync to server x.x.x.x failed, authentication type none". If I run a "show ntp":

NTP state:

NTP not synched, using loc

...

Resolved! global protect error - Error(6986): Protocol error.

Error(6986): Protocol error. Check server certificate. Failed to ssl connect to 'globalprotect.xyz.com:443', Disconect ssl and returns false.

firewall Policies list

I am on OS 7.0.10 and would like to get a nice easy to read list of the rules on my firewall, other than the html exported list does anyone know of a good method?

Resolved! Syslog analyzer - how to configure logstash to send to remote, not local hosts ?

I have syslog analyzer created from prototype stdlib.localSyslog. Now I want it to send matching results to logstash but on remote not local server where MM is running. Default is I think below (host is 127.0.0.1), where do I change host address ?

i...

Resolved! PA HA concept quick question

Hi Guys,

Just to clarify that heartbeat ping messages send by bi-direction (Active>Passive and Passive>Active) and these messages proceed by management plane. So if my MP CPU utilisation is always high (98% it is 2050) is it possible to lose ICMP (h

...

Policies / application question

Just trying to understand PAN and policies better.

If we want to allow all web-browsing, what can we do?

As soon as the application is identified, we will need a policy for this specific application (for example Google base). Otherwise we will hit an

...

Report Setting are:

Database: Traffic Log

Time Frame: May1-31

Sortby: Top 500

Group by: 25 Groups

Selected Columns: Dest

...

Resolved! ssl sever certificat can't be verified

Hello I encountered a strange situation

I tried numerous time to connect a global protect agent in version 2.1.x on windows 8 and with a mac too

and I obtain a message can't verified the server certificat

I tried to connect with the FQDN specified in th

...

Discussions

Join Us in Welcoming LIVEcommunity's 2024-25 Cyber Elite Experts!

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

VM PA to VM PC Unable to ping.

Cascading PBF policies for traffic fail over between two sites both using PAN firewalls?

Issue with connecting to GlobalProtect

difference between revert ti running configuration vs load named config snapshot

Resolved! Detailed view miners

NTP sync failing after PAN-OS 7.0 upgrade

Resolved! global protect error - Error(6986): Protocol error.

firewall Policies list

Resolved! Syslog analyzer - how to configure logstash to send to remote, not local hosts ?

Resolved! PA HA concept quick question

Policies / application question

Help wit sequence of steps when an end host connects to the GlobalProtect system for the first time.

globalprotect key

Generate Traffic Report on PA Firewall 7 Months Ago?

Resolved! ssl sever certificat can't be verified

URL exeptions best practis

Error 500 when attempting to login

URL Filtering - Predefined Category URL Listing

How do I transfer ownership of the superuser/domain administrator?

Automatically adding email DL to every CSP case and receive Palo advisory updates

PAN-GPLimiter: Limit Concurrent GlobalProtect Sessions/Connections Per Unique User

Fuel Spark Event Discussion: Identity Management/Zero Trust and Quantum Security (August 22, 2024)

Re: Quick upgrade query

Re: How do I transfer ownership of the superuser/domain administrator?

Re: TERRIBLE GlobalProtect OSX mac application is SPAM

Unlock your full community experience!

Resolved! Detailed view miners

Resolved! global protect error - Error(6986): Protocol error.

Resolved! Syslog analyzer - how to configure logstash to send to remote, not local hosts ?

Resolved! PA HA concept quick question

Resolved! ssl sever certificat can't be verified