Error while disabling tunnel.

Hi All,

We are running PA with firmware 9.0.4

Getting errors while "disabling" not required/unsed IPSec tunnel.

Error: tunnel interface tunnel.50 encap interface is not set.

Error: parse tunnel member failed.

Error: error parse qos tunnel group

Error: er

Rules from One Zone to another Zone

Hello All,

from the GUI i can get all the security policies from one zone to another, However, from the CLI, is there a way?

for example : i need all the policies from Orange_Zone to Free- App_Zone

"Orange to DEVDB11-1; index: 1333" {
from Orang

User-ID Agent

Hello!

I have a Palo Alto with version 9.1.5 installed and I want to install a User-ID Agent, which version can I install?

Rate increase in flow_ipv6_disabled

Hi All,

Is there any way to check which source of this flow_ipv6_disabled?

Our monitoring tool keeps on alerting us due to these parse packet drops. 

When I run the command below, I don't see any logs on Palo Alto's monitor. 

debug dataplane p

What is the difference between Premium Support License and Standard for PA-820

I am trying to find out the differences in Premium versus Standard Support licenses for our PA-220s.  I was able to find a doc for Premium, no luck with Standard.  Please advise

Join Palo Alto Networks at SASE Converge 2022!

Is your network ready for a new hybrid work environment? Join Palo Alto Networks leadership and industry experts at SASE Converge 2022 to learn about the latest trends and innovations in SASE!

Check out the agenda and register for SASE Converge

Quic / HTTP/3 whats palo doing about this

Hi

Wondering what the road map is for allowing this - but safely - ie decrypting etc

looks to me like http/3 is going to be moving ahead and looking at a lot of the material its going to be very beneficial - especially in the space of speed / laten

Dual ISPs VPN failover across both

Trying to provide some tunnel redundancy to some of our AWS environments.  I have 2 ISPs both with an interface/static IPs on my HA PANs. ISP-A is my default with a default route to the internet pointing to its next hop.  

ISP- A Eth1/8 9.9.9.9/24 ZO

Rule Shadow count not working

Hi, everyone. I'm currently working on a new config for a couple of firewalls, but everytime i commit my config I get rule shadow warnings (valid ones) but I can't use the count link to get a list of the shadowed rules. I'm running 10.1.6; is this a

Vulnerability Profile in URL Filtering

Hi All,

So here's a question, when I use global find on the "strict" vulnerability profile (the one included in the software) it shows as being part of a URL filtering profile, is this because I have HTTP header insertion configured on that URL p