PA-500 Boot Time being slow

I have (3) PA-500's, and the one thing I have noticed on all of them, is that it takes up to 10 min. to boot.  It takes 15 min or longer if there is a new release being installed.  What does the PA use for storage, and why does it take so long in thi

Draytek Vigor - Site to Site VPN

Hi there,

I'm looking to setup a few site to site VPNs using a PA2020 at our HQ site with Draytek Vigor 2830n routers at the other end. We have fixed IP addresses on the other end so I don't need to worry about the issues with dynamic IPs.

I was wonde

FQDN Address Object wont resolve

Hello,

I am trying to setup a U turn NAT that runs so that any system trying to contact time.apple.com using the NTP protocol will be rerouted to an internal NTP server. We do not allow NTP out and iPhones and iPads ignore DHCP settings for the NTP

Youtube getting falsely recognized as google

Shortly, after the APP-ID changes were implemented, I'm having problems with youtube.  By default we disable general access to youtube.  However, we do allow access to specific videos.  When I attempt to connect to youtube.com using http, I get block

migration ipsec rsa vpn from juniper ssg

Hello all,

There is 2 juniper firewalls.side to side between them.Side A and Side B

I'm going to change side A with Paloalto and for sideB change configuration is not allowed.

So everything is ok except for vpn.inside juniper phase 1 profile is s

GlobalProtect Prelogon without initial Internet Connectivity

Hi,

Please can someone explain to me how GlobalProtect Prelogon can possibly work without any valid internet connection.

For example in a hotel or cafe, you have to be logged into your laptop first to connect to the hotel's wifi portal so how doe

How custom forward logs to syslog server

We are sending all logs from Palo to SIEM. How can we eliminate those of low or no value to us (exp. Allow_TCP_End) to be sent to syslog server? The server fills up quickly and there's a large amount of logs that provide no insight during analysis; w

VPNC Ports?

Hi all,

I have enabled VPNC for my Linux users who cannot use GlobalProtect.  Does VPNC use port 443 like globalprotect?  Can't seem to find any information about this on the web.

-Matt

How to restart the OSPF Process

Hi, I'm trying to do some debugging of some OSPF troubles that we are having and I'd like to restart the OSPF process to see the neighbors comes up and the LSA exchange.  How do I do this via CLI?

On a Cisco router it would be "clear ip ospf proces

GlobalProtect Client not Connecting

Hi All,

I'm experiencing a problem with GlobalProtect and I'm hoping I can get some assistance.

I'm able to log on to the GlobalProtect Gateway. I successfully log in and Download the agent. However, when I click 'Connect'. I get an error that says