Expedition not importing NAT or security policies from PA-3020s running PAN-OS 9.1

I'm working on a project to upgrade 2 x PA-3020s each with their own configuration into an HA pair of PA-1420s and am having trouble with Expedition. I've tried importing the devices using the API key and also by exporting the running-config.xml file

Retrieve "User Group" using RADIUS attributes

Hello Team,

I have configured a RADIUS connection with FortiAuthenticator to implement multi-factor authentication (MFA). Within FortiAuthenticator, I created two user groups: an ADMIN group and a USER group. My objective is to set security policie

loopback for globalprotect VPN

What is the advantage of using a loopback interface for a global protect VPN?

BGP session flapping with error code 3 subcode 11

Hi All,

I have an issue with setting up a BGP Establish connection. On my side is a PA firewall connected to the a ISP with BGP session. The first time, the ISP side sent only the default route to PA, and there was no problem in the BGP session. An

Error trying to assing more than 90% to Detailed Firewall Logs at Collector Group in Panorama

Hi all,

We are using a Panorama VM with a local managed collector. When I try to customize how to use the assigned space, Collector Group -> General -> Log Storage and I introduce more than 90% for detailed firewall logs, red square indicates that

Unable to reach management service and console

Hi, greeting all

my palo alto appliance(PA-850) used virtual-wire mode already, a few days before, paloalto can passaging traffic by virtual-wire pair, but the management service unreachable. even i tried to PING / HTTPS / SSH / SNMP / Console etc. a

COMMIT FAILED

Hi everyone,

When I commit on my device, I get the following error "virus_update_block"

Has anyone had this error before or can anyone help me resolve it?

Thanks.

I Completed My Final Assessment For PCCET When I Get Certificate?? I Get This One

 Reply....

Which CA is your Suggestion/Recommendation for SSL Decryption

Hello Live,

I was wondering which certificate athority network administrators choose to buy their certifcates from.

I am currently using a self signed certificate distributed via GP for the SSL decryption feature. I am hoping to replace this self sig

HA Condition - Link Monitor Recovery - Time to retake Active Link Monitor role

HA Condition - Link Monitor Recovery - Time to retake Active Link Monitor role

Hello Community, how is everything going, I hope it's going well.

I have the following questions regarding HA.

Details of the environment.

Active - Passive A/P
Princi

HA sync fail, not normal

Need sync help. About two months ago we noticed our passive 3250 would slowly not respond. It finally died, no console response. Opened ticket, had one RMA, powered it up. Imported the saved config we took before it died. Checked ip's, management set

is it possible to have crowd-strike flacon installed on a paloalto VM

Hello,

Is it possible to have crowdstrike falcon agent installed on the paloalto vm machine