Revert back a 6 OS from 7 OS

Has anyone had to revert back from an upgrade?  Especial from 7 OS from a 6 OS? If so how did you do it and how easy was it? I am preparing to move from 6.1.10 to 7.06 and I want to make sure that I cover every possible scenario. Luckily I have a sec

about ssl decryption error

Hi there, 

recently we have implemented ssl decryption in our network , But Chrome comes up with "ERR_SSL_FALLBACK_BEYOND_MINIMUM_VERSION" 

New to the Palo Alto platform and have a migration question

I am fairly new to the company I work for and have inherited a network that has two ISP's with two firewalls.  One firewall is an older ASA and the other is a small Sonicwall.

I have pretty good experience with the ASA platform.  However, the Sonic

What's the best way to permit app on non-standard port?

For instance, web browsing on port 8080.  I don't want to just set the service as I also want to use port 80 and there are other apps in the rule and I'd like to use app-default as the service.

I defined a custom app with web-browsing as the parent

Behaviour app override

Hi, we are having an issue using app override. 

1) We have created a custom app for Oracle (without timeout). Using these ports: tcp1521-1541.

This is the config

This is the app override policy:

This is the security policy (app any and ports

Clearing Traffic Log

Running 7.0.6 on 7050's I cleared traffic logs and lost connectivity to management sever and took about 30 min after restart of mgmt sever for traffic logs to reappear . Is this normal. Which log file has info on managemt disconnect files/reason info

system alert high opaque: websrvr: Exited

After we upgraded from 7.0.6 to 7.1.2 in one go we started receiving this error message. Does anyone know what causes this ?

We are running active/active on 3050's

domain: 1
receive_time: 2016/06/02 10:25:41
serial: 001701002580
seqno: 2017446
action

Feed of one EC2 Availability Zone

Is it possible to filter down the Amazon EC2 feed to specific availability zones (just us-east-1 or eu-west-1)?

Nested Policies Suggestion

Not really sure where to put this, but thought it might be a good idea and wanted to share it. Im still rather new to PA and so far I am enjoying it! However, I noticed after a while of creating and editing security policies it becomes quite a mess a

Two-factor PAN webconsole authentication

Hi,

I would like to use a two-factor authentication for the administrators when they access the PAN-500 web console.

With an authentication sequence I can use 2 ways to authenticate but I want to force the use of both. Is that possible?