Release notes

Is there a good way to review you firewall against the release notes of the upgrades that you are considering? I have been reading them and in order to avoid issues moving to 7.06 (TACS recommended most stable version) I should do an intermediate of

PA-200 - Passing traffic through multiple ISP links

I have a Palo Alto PA-200 and the setup I'm trying to configure is as below.

• I'm using "Fiber1" and "Fiber2" for Internet purpose. These 2 links are connected to firewall via a trunk port.
• The ADSL links and the "LankaCom" link in the right ar

Native RADIUS accounting, a welcome feature

This week i was asked to configure radius accounting as a source for user-ip mapping. I was very surprised to see that this is not nativly supported. In lots of ways it is the one of the nicer ways to be able to get user-ip mappings. And as other ven

Getting Started: Layer 2 Interfaces

I have installed a VM-100 and was able to configure the management interface. When I go under the network tab all interfaces are showing as down. How do I get an interface to go into an up state?

Unexpected proxy ARP from NAT policy

Hi there,

I had an interesting go round with PAN support involving proxy ARP and source NAT.   Background: I don’t use the PAN for public ingress/egress traffic, for me it is for internal DMZs only.  As such, I’ve not had the opportunity to utilize

Licensing Costs

Hello Community,

Can someone give me a general guide as to license costs. For example, if I wanted purchase, URL Filtering license or Antivirus or Anti-spyware license for a year, how much would that cost me as an individual as opposed to a corpora

PCAPS in Sub-interface

Hi Guys,

Can PA do packet capture in Sub-interfaces? 

Thanks in advance!

Global Protect's lack of connection profiles is making everyone at my company very sad

We're in a situation where we have mutliple PA firewalls deployed and many of them have their own GP SSL VPN set up (e.g. Manangement range, lab, severeal different customer "islands").  The lack of "connection profiles" within the GP Client is a rea

GP client doesn't populate the gateway after installing

When users download the GP client from my portal and install it, the gateway field is blank. I've configured the gateway in the Globalprotect Portal>Agent Configuration>Gateways. 

Is there a way to have the gateway information pre-filled? 

Timeout while waiting for response from agent.

Hi All,

We are using kaseya for monitoring palo alto firewall it was working fine month back but suddenly it stopped and we are getting "Timeout while waiting for response from agent." for all the montors we set up for the 

anyboady know the solu

IPSec traffic being treated as "ciscovpn" applicatoin

Hi,

Having an issue with IPSec tunnels. Sometimes (not all the time), phase 1 can't be established because IKE traffic is being treated as "ciscovpn" instead of ike and being discarded. Once I clear the session, the next session establishes correctly