Revert back a 6 OS from 7 OS

Has anyone had to revert back from an upgrade?  Especial from 7 OS from a 6 OS? If so how did you do it and how easy was it? I am preparing to move from 6.1.10 to 7.06 and I want to make sure that I cover every possible scenario. Luckily I have a sec

NSX Deployment-Panorama

We are doing a POC with NSX and have stood up the firewalls and they are recognized by Panorama however within "Managed Devices" the PA VMs are constantly showing connected then disconnected. We do not believe this is a network problem as Panorama an

about ssl decryption error

Hi there, 

recently we have implemented ssl decryption in our network , But Chrome comes up with "ERR_SSL_FALLBACK_BEYOND_MINIMUM_VERSION" 

New to the Palo Alto platform and have a migration question

I am fairly new to the company I work for and have inherited a network that has two ISP's with two firewalls.  One firewall is an older ASA and the other is a small Sonicwall.

I have pretty good experience with the ASA platform.  However, the Sonic

What's the best way to permit app on non-standard port?

For instance, web browsing on port 8080.  I don't want to just set the service as I also want to use port 80 and there are other apps in the rule and I'd like to use app-default as the service.

I defined a custom app with web-browsing as the parent

Behaviour app override

Hi, we are having an issue using app override. 

1) We have created a custom app for Oracle (without timeout). Using these ports: tcp1521-1541.

This is the config

This is the app override policy:

This is the security policy (app any and ports

Clearing Traffic Log

Running 7.0.6 on 7050's I cleared traffic logs and lost connectivity to management sever and took about 30 min after restart of mgmt sever for traffic logs to reappear . Is this normal. Which log file has info on managemt disconnect files/reason info

system alert high opaque: websrvr: Exited

After we upgraded from 7.0.6 to 7.1.2 in one go we started receiving this error message. Does anyone know what causes this ?

We are running active/active on 3050's

domain: 1
receive_time: 2016/06/02 10:25:41
serial: 001701002580
seqno: 2017446
action

Feed of one EC2 Availability Zone

Is it possible to filter down the Amazon EC2 feed to specific availability zones (just us-east-1 or eu-west-1)?

Nested Policies Suggestion

Not really sure where to put this, but thought it might be a good idea and wanted to share it. Im still rather new to PA and so far I am enjoying it! However, I noticed after a while of creating and editing security policies it becomes quite a mess a

Two-factor PAN webconsole authentication

Hi,

I would like to use a two-factor authentication for the administrators when they access the PAN-500 web console.

With an authentication sequence I can use 2 ways to authenticate but I want to force the use of both. Is that possible?

PANOS 71.2 GLOBAL PROTECT 3.0.2 Gateway Protocol error. Check server certificate

Hello,

I'm using GP 3.0.2 on a Win7 PC (PAN OS 7.1.2).

I'm getting error 'Gateway x.y.z: Protocol error. Check server certificate.' error message.

I have already reinstalled  the client on my computer. Same error message.

My colleguea, using WIN 10