- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
With 20 years of excellence behind us, we're just getting started. Here's to a future of pushing boundaries and protecting what matters most.
Palo Alto Networks has been nominated for multiple CMX Awards. Please take a moment to vote in the following categories: User Group Program: Fuel User Group, Customer Support Community: LIVEcommunity, and Best Community Podcast: PANCast™. Thank you for your support!
Find answers, share solutions, and connect with peers and thought leaders from around the world.
New to LIVEcommunity? Check out our
Welcome Guide.
Hi,
We have deployed several branches, unfortunately monitoring the branch ION by snmp doesn't seem to work out. Response times of ION's on snmpwalk are high (up to 10sec). We were recommened to use api monitoring instead.
I've generated auth keys
...
Hello good afternoon, as always thanks for the support and collaboration:
I recently added a couple of Raid to m-100, as these were not configured, I made the settings at log setting level to send only configuration and system logs of the firewalls
...
Considering PE, PE64 and macro enabled Word and Excel documents are allowed to be entered to blocklist, does it make any sense to add a .bat or a powershell PS1 file to the XDR blocklist Cortex XDR
Hello Everyone,
He have a policy management in the extension policy rules to Block the USB in the workstation. Now we find a issue with samsung mobile, when the device is connected and mass storage is allowed it skips the policy and for some reason
...
Somewhat of a silly question. Have a GWLB configured with 2 vm-series firewalls as targets (1 fw in us-east-1a and the other in us-east-1b).
Under the target group configuration, there is a recommended setting to be enabled for Target Failover
...
I've users on subnet A that needs to communicate to a service over a vpn on subnet B.
This subnet B already knows a subnet A, and therefore we're doing a source NAT for subnet A to C.
A server in subnet B needs to print to a printer in subnet A, thus w
...
We've been tracking the scanning campaign that made the news recently concerning scanning and dictionary attacks against GlobalProtect portals. We've been able to put together a parser to pull and deduplicate IP addresses from our logs for those att
...
hi,
we use SAML for our Global Protect Portal and Gateway Authentication, so all logins are automatically forwarded to our IdP and are being processed there.
But for whatever reason we sometimes face Brute Force attacks on our portal, where all kinds
...
Hi all,
I imported a custom pack to XSOAR main account, but I don't want some tenants to use it so I want to use XSOAR propagation labels, but even if I set propagation labels, when I sync it distributes to tenants.
Do you have any suggestion?
Hi everyone, do you have any idea why this tunnel will not establish?
I'm trying to connect with a partner company. The IPsec config is identical across two templates. Both sites have their own unique public IP and are connecting to the same peer
...
SAML - Integration - Globalprotect Azure-AD-EntraID - Policy Based Groups Azure-AD for GP
Hello Live community, how's it going? I hope it's going well.
I have a question, today we have via GP the integration with Azure-AD Entra ID, via SAML, whe
...
I have just found topic in knowledgebase regarding auto launching application for globalprotect clientless access - if there is just one app and URL bar checkbox is disabled.
Is is still valid? Does anyone uses that?
I've just tried to reproduce in
...
Dear Palo Alto Community,
the customer made a mistake by configuring on Strata Cloud Manager the wrong IP address on an aggregate interface and because of that change the FW lost the connection to Internet (and also to Strata) causing also a lot of
...
Hello,
it is a few months that we have an issue on Webex call beetween two users (not on Webex meetings). Basically after a while the video call quality starts to decrease during a direct call on Webex beetween two users.
We already disabled SIP
...
Hello,
This past week I've started seeing traffic that's classified as Tunneling:isavscan.[tld] (threat type: dns-c2, ThreatID: 109001001) hitting my Outside intrazone rule where the source and destination are our public ARIN IPs (the rule is current
...LIVEcommunity has been nominated for four Community Industry Awards:
Help secure our win by casting your vote now!
Your security posture is important to us. If you're a Palo Alto Networks customer, be sure to login to see the latest critical announcements and updates in our Customer Advisories area.
Learn how to subscribe to and receive email notifications here.
PANCast is a Palo Alto Networks podcast that provides actionable insights to customers, helping you maximize your investment while improving your cybersecurity posture.
This blog was written by Peyton Padfield and originally published on May 9, 2024. In today's companies, digital transformation significantly shapes the business landscape, paving the way for a new era...
We use the web browser to do everything these days. It’s where 85% of work happens, whether accessing your SaaS apps like checking a sales lead in Salesforce or requesting time off in Workday. However...
This blog was originally published on Cybersecurity Dive. The facts are stark: 65% of organizations have little-to-no control over the data being shared in GenAI apps, 98% of organizations said they h...
This blog originally published on October 18, 2024. Several months ago CISA (Cybersecurity and Infrastructure Security Agency) reported that threat actors exploited multiple vulnerabilities in Ivanti ...