Active - Active firewall deployment across two data centers

Hi All, 

We are exploring the firewall deployment options for one of our customers who have a requirement to stretch few VLANs across 2 data centers most probably using VXLAN/EVPN. The options currently being explored are:

1. Active-Standby firewalls

Request for Official Information – SKU Change from INTEDGE to CORESEC

Where can I obtain official information from Palo Alto Networks regarding the SKU change from INTEDGE to CORESEC?

Administrator account issue

PA-5050 device with software version 4.1.6.

In all my devices except one, I was able to create a new Administrator account (Superuser) with password and log on with the account to administer the device.  The problem device allows me to create a new ac

DHCP Server - Conflict IP's

Has anybody else experienced an issue with their DHCP server leases being constantly filled up with conflict IP's by one device?

There is no pattern to which device will do this, it seems at random. I'm on version 11.1.6

Any guidance would be much

Assistance with LDAP Authentication

Currently working on a PA-540 running 12.1.3 code.  I have setup a LDAP server profile, and setup an authentication profile.  If I test from the cli, the bind is successful, but the authentication fails, even if I use the same credentials I used to d

Move FW to a TEMPLATE VSYS

Hi,

I have created a new vsys in a 5220 to have all the config that we have in a VM FW. Which is the best way to move all the FW VM config inside the new VSYS in 5220.

Copy all the FW VM config and paste it in the template VSYS in panorama?

Is th

HA ACTIVE firewall is failing when commit

The problem is that after performing a Commit&Push, the primary (active) firewall generates a status change that affects the signaling of the Cisco Nexus switch ports, causing them to enter suspended mode on both switches in the VPC configuration. Af

Configure VPN GP wit Microsoft Authenticator

Hi,

i would like to configure my VPN using MAuthenticator. Anyone has a guide for this?

i was checking this link but im not sure if this config should be used if you have EntraID AD in the cloud or not:

https://learn.microsoft.com/en-us/entra/ident

Requests from internal company DNS to Root-servers.net

Hi, i'm observing in the fw logs massive requests from company dns servers to root servers (53 udp).
These servers are generally named *.root-servers.net.
I know that our Dns are configured to interrogate our provider DNS.

Do i need to allow communicati

PAN OS 11 and DHCPv6 with Prefix Delegation

I wanted to make sure I had the settings correct for configuring DHCPv6 on my WAN interface for Starlink. I can confirm that I did get an allocation of IPv6 addressing with a /56 prefix and was successfully able to get an IPv6 address assigned to my