Action of allow  but of Type policy deny

Hi

panos 11.2:

I am using SSL Inspection for all inbound traffic on my web sites.

Certain TLS connections with TLS inspection enabled did not work. Looking at the traffic log the connections shows an Action of “allow” but of Type “deny” with Sessio

Drawbacks enabling Jumbo Frames (PA-5400 series)

Hi Community,

we are thinking about enabling Jumbo frames globally on PA-5430 firewall that is connected to Nexus and Catalyst.
- Nexus for high performance & storage with MTU 9216.
- Catalyst for all the standard stuff with MTU 1500.

Are there any limit

"-base" applications and how they relate to non-base applications

The term "base" makes this impossible to search for because "application-based" and "port-based" shwo up everywhere. I am not finding an answer in any documentation yet. So, please help me clarify. If I specify the application to be one with the suff

How can I test a ldap server that is healthy or not？

Dear all

        We need to replace our old ldap server config to a new ldap server on PA firewall and panorama, I want to know if I add a new ldap server config on PA firewall and panorama, how can I test the healthy of the new ldap server? I try to

Inquiry Regarding Conversion of Unused PCDRA Voucher

Hi, I would like to inquire if there’s any option to convert my PCDRA exam voucher into a voucher for a different but related certification exam.

I currently have a PCDRA voucher, but since the PCDRA exam appears to have been retired, I’m unsure how

Customize Global Protect app/response pages

Hi,

I would like to customize portal web GP. The main web where you add your credentials and the enxt web where you can download the client. Is that possible? I saw you can import web for portal GP web in DEVICE-> Response pages, but i would need t

Odd behavior around ISP Failover with Static Route Path Monitoring

Hi,

I had an unexpected situation occur recently with regards to failover behavior on static route path monitoring. We have 3 ISPs, and this past weekend 2 of them went down at different times (hooray). For the purposes of this post, I will be talkin

HIP Check for Machine Certificate

Hello,

I've been unable to get my HIP check to work when checking for attributes in a machine certificate.  Other HIP checks do work.  I'm using my root cert for the Certificate Profile.  I don't have/use a intermediate cert as this is a lab.  Some of

Sofware Upgrade broken? "An active license is required for this feature"

I have a bunch of PA440s and some of them cannot be upgraded as I keep getting an "An active license is required for this feature" message when clicking on Check Now under Device > Software. Device is correctly licensed and activated on the support p

QOS Not Working Propely

Hi Friends,

We have a customer experiencing issues with QoS. After enabling QoS, a noticeable reduction in internet bandwidth was observed. Although QoS was configured correctly, the bandwidth dropped from 25 Mbps to 14 Mbps on a 30 Mbps link.
To te

Virtual routers Impact

Hi Team,

if we create extra virtual routers does it impact CPU/RAM utilization i paloalto?Also do we need manually assign CPU/RAM allocation for newly creating virtual routers in paloalto ?

PCI Compliance - 86476 Web Server Stopped Responding

First time in years, getting this failed result to a PCI scan. 86476 Web Server Stopped Responding.

Their tech suggests it has something to do with my PAN WAF/IDS and they have a bunch of IP addresses/ranges that I can whitelist. I find this odd as