AWS GWLB VPC Endpoint Associations no longer work post-upgrade

Heartbeat Backup showing down on both HA peers

I have an active passive configuration which seems to be working and has failed over successfuly in the past (possibly a year ago).  According to the PA docs I read the heart beat is a ping that runs every 1000ms.  I assume since the heartbeat backup

Chrome (HSTS) NET::ERR_CERT_AUTHORITY_INVALID - with 10.1.14h4 update

We updated PANOS (on Friday before h6 was released on Sat) to 10.1.14-h4, rebooted and now our users are sporadically complaining about when using google Chrome (Edge not effected), getting a "Your connection is not private" NET::ERR_CERT_AUTHORITY_I

internet issue

i have PA 440 trying to access the internet and i have set virtual router with default route to dataplane interface however when i try to ping anything on the internet the reply comes from the mgmt interface.

(attachment)

Telemetry decided to stop sending

UPDATE: This was a bug and was fixed after installing 10.2.10 

I have seen a couple others post this same issue on Reddit but figured this would be the place to ask. Does anyone know how to kick telemetry back into a working state? It was working

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

• Customer Support Portal Overview
• License Management
• RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

Knowledge sharing: Palo Alto General Logs and Log files that are in the managment, data and control planes overview/review

1. Most of the palo alto well known deamons have their own logs that can be reviewed:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLUeCAO

2. It is interesting that in the higher end Palo Alto platforms like PA-5000

Recently just installed expedition in the VMware, however couldn't login to the Expedition via google chrome

Recently just installed expedition in the VMware, however couldn't login to the Expedition via google chrome.

Don't know where to load the google chrome?

Post Expiration Admin Login Count

Hello expert,

I wanted to check if someone encountered same issue as mine.

We did configure password profiles in our PA-820 (version 10.2.9) by enabling "Post Expiration Admin Login Count" to 3 times.

Somehow, after password was expired it just str

Настройка mikrotik на Palo Alto

Здравствуйте всем можете помочь у меня интернет настроен на mikro tik с внешней и внутренней интернетом и подключена на d link. Я хочу подключить интернет на mikro tik и Palo Alto и патом d link . Я настроил Palo Alto как мост (bridge) но все ровно н

Cortex XDR Prevent, URLs

Good afternoon, it is possible from Cortex XDR Prevent to block access to specific internet URLs. Or failing that by category?

General TLS protocol Error

We have forward proxy (ssl decryption configured)

We are having intermittent access to some webpages users have to reload the page to gain access.
We are seeing General TLS Error on the decryption logs under Error.

What Iv found out about the error

Enable global setting preserve-prenat-feature for prenat user-id

Hi. I have GP and userid configured at Pan OS 11.1. I'm getting the message.

• Warnings:
• . vsys1
• . Warning: please enable global setting preserve-prenat-feature for prenat user-id to be effective.

I can not find anywhere in menu the mentioned global se

Facing multiple issues post upgrade to 11.1.4-H4

I observed multiple issues pos upgadation to 11.1.4-H4

1. Panorama not showing all logs under Monitor TAB - In release notes this issue mentioned as fixed in 11.1.4-H7, But still not fixed

2. GP auth's are failing when enforced Certificate+SAML Aut

User ID Anomalies

Hi,

I had a strange behaviour with some user on user ID. We have 2 site A and B and our firewall have the mapping from the same agent.

we found that user1 access site A and user2 access site B.

issue that we found that user1 is access site B usin