DR Panorama facing issue with the login when performing failover from DC to DR

Dear Team,

One of our customers is using Panorama for both their DC and DR locations. When the DC Panorama is active, they are able to log in successfully to both the DC and DR Panorama. However, when a failover is performed and the DR Panorama becom

Prisma SD-WAN Fabric

Which OMP protocol is used by the Prisma SD-WAN fabric, and how does it function?

Prisma SD-WAN 

GP portal login page remains unavailable after unblocking IP

Dear community!

I have configured a vulnerability profile to make use of threat ID 40017 in order to prevent brute force attacks on globalprotect portal page. Followed this article:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA1

Global Protect - split tunnel catching too much

Global Protect is working great, but we're seeing too much traffic inside the tunnel and subsequently dropped on the DC firewalls.

We're using split tunnel with specific routes and a couple of include and exclude domains. However, we're seeing complet

TSF file

I want to create a case,  but tits mentioned upload a TSF file and its mandatory. 
the problem is I cant even log into the device to get a  TSF file ( thats why I am creating a case for them). Any solutions ? 

Decrypt Error When Connecting to GlobalProtect via 3rd Party Office Network

We have a user currently working from a 3rd party remote office for a project. When connected to the 3rd party's local network and then to GlobalProtect VPN, the user is unable to access any websites. Our logs indicate a decrypt error occurring durin

MTU issues over SD-WAN

Looking for feedback around MTU sizing over SD-WAN.

We have deployed firewalls with SD-WAN and are recieving feedback pxe boot for imaging pcs over the network is no longer working. It appears the MTU is larger than 1500 and is being dropped.

The im

Where can I find my palo alto networks registered partner certificate?

Where can I find my Partner Certificate in this website to download, guide me in this process

PA-VM-KVM-10.2.5.vm_eval not accepting username/password

KVM series (PA-VM-KVM-10.2.5.vm_eval) PANGFW evaluation copy on my laptop running GNS3 on top of VMware workstation.

2024-09-24 09:09:11.345 -0700 Error: sysd_construct_sync_importer(sysd_sync.c:360): sysd_sync_register() failed: (111) Unknown error

Decryption Profile

I modified existing decryption rules to add a decryption profile to each of them.  In the profile, I have "Block sessions with untrusted issuers" checked.   I'm finding sites with well-known trusted certificates are being blocked due to this.  My und

Technical Inquiry – Does PA-400 Series Support USG/BSG Functionality?

We are evaluating the PA-400 Series (including PA-410, PA-415, etc.) for use in an industrial SCADA application that is subject to critical cybersecurity requirements, particularly those set by our national utili

after Global Protect update not install network adapter

after update or install a new global protect version on windows 10/11 the network adapter doesn't install, to solve this problem you need to do some KB like:

KB Palo Alto
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZN8

How to Download, Build, and View Prisma Cloud Documentation Offline (and as a Container!)

Hello,

I hope i am writing in the right place .

I'm looking for some guidance on a specific use case related to Prisma Cloud documentation. I need to be able to download and view the Prisma Cloud documentation in a completely disconnected environme

Global Protect application blank screen

Hello Members,

Can anyone help me to solve the global protect blank screen issue on my PC, as for others it normally works fine.

I am using Windows 11 and I have already removed and re-installed the GP App but still it shows a blank screen and I

STATIC NAT NOT WORKING

Please consider below topology in which PC-1 - 3 are connected to Cisco Switch and having a gateway 192.168.1.1 configure on firewall. Firewall rule is any any and all the PC can ping the IT PC with actual IP. Now I want to deal with the scenario whe