General Topics

looking for documentation...

hello!

where can i find pdfs comparing paloalto with other fw vendors? i managed to find for checkpoint, but nothing else...

User to IP mapping issues while connecting to WIFI(wireless)

Scenario:

User comes to office connects to LAN. The user to IP mapping works correctly.

We allow access to internet based on usernames.

User disconnects the Ethernet cable and goes to different room where he connects with wifi.

However loses internet co

HA Failover in a Multi Vsys environment

I am currently setting up HA in a multi vsys environment, cant seem to find any documentation on the subject.

Currently I have a HA pair of 5050's with 3 vsys, HA has been setup but how do I ensure when vsys1 fails it is the only system that fails ov

PA-7050 HSCI Ports

I am in the process of a cluster (active/passive) design for two PA-7050 chassis. We have two Datacenters in two different locations. The DC's are connected through a Layer 2 connection.

Can I use the HA-2 QSFP+ Interfaces on the SMC to interconnect t

Resources SSL-Decrypt consuming

Is there any way to know what SSL-Decrypt is consuming in CPU? In order to know if the SSL decrypt is causing a high load CPU? 

No internet issue on one sub interface but works fine on other sub interface

I am having a simple setup.

I have created a new virtual router.

Added 2 sub interfaces. ( 1/1.320 and 1/1.340)

Added default route.

Can not ping ISP next hop. No block on logs. But Bytes received 0.

I have connected my other ASA router to the switch whic

Palo Alto updates mails

Hi,

My customer recently had problems with Palo alto apps&threats updates. They had SMB connections being allowed but with the last content update these connections were cataloged like "SMB brute force" and connectios were dropped. 

The best way would

PaloAlto T Shirt on completion on ACE

Hey There, I just now completed my PA ACE. Is the promo of providing the ACE T shirt still there? Let me know how to get it.

LACP in HA issue

I have a pair of PAN 5060 (v.7.1.2) firewalls  in HA Passive/Active connected with LACP to pair of core Nexus 9000 switches. From time to time (every hour or few) connectivity to active firewall is faling (can't ping firewall LACP L3 interface ip add

Updates to firewalls from Panorama show failed, but seem to install properly

When I try to push updates to our firewalls from Panorama, it reports that the job failed, but the jobs seem to complete anyway.  This happens when pushing dynamic updates, and I had it happen again to a software upgrade on a PA-200 last night.  When

How does ACC work?

Hello,

I tried to find a technote to explain how does ACC work,  please help me to understand,

1. Where does ACC collect the data from? 

2.  Is traffic logging (log at session end) required for ACC to work?

3.  Is ACC real time (with 15 minute delay)?

FQDN address objects not resolving

Hi guys,

I've seen a few bugs in the past regarding FQDNs not resolving. Since an upgrade to 7.1.2 the DNS addresses aren't resolving properly and thus aren't hitting the correct policy I have the address objects on.

 This issue resolves itself when