High Availability issue PA 2020

I have 2 PA 2020's which have been running HA fine for about 2 weeks

now i see in the device that eth1/11 is showing as red/down in both firewalls

the system log shows per attached log (for pri and sec firewalls)

anyone have any ideas re this HA issue p

application override not working

Hi,

We configured Palo Alto in vwire mode between our head office and branches. Setup is like  Core <--> PA3050 <--> WAN Switch. There is a specific application that is not working and we create custom application by defining the destination port. We

data filtering log doesn't show filename for boxnet app

I just ran into this issue last week. We are decrypting boxnet and applied a data filtering profile.

For web uploads and (for wildfire submissions?!) it seems to recognize the filename just fine, but for uploads via boxnet app it just shows unused.

Is

Safe Search Enforcement

Gentlemen,

I set up the Safe Search Enforcement option, as described in the documentation of Palo Alto Networks. But it still fails when it comes to blocking searches for porn on search engines.

Does anyone by chance have used this new option that is

Firewall GUI Not access and configuration got deleted automatically.

Hi friends,

Not able to access the Palo Alto Firewall GUI from Management Interface and Lan interface also. No Ethernet indication (Light) showing on All Interface. MGT interface showing up but not able to take the GUI access, so taken access through

PA-500 front panel status LED is not on

Hi all,

I'm now having issue with PA 500 where the front panel of the unit "Status" LED is not ON. I'd change a 2GB RAM for my client and when I try to boot up. The status light is not on and I can't make any configuration as there will be error "A co

About MS14-068 (Kerberos Checksum Vulnerability - CVE-2014-6324) protection

Hi

Is there anyone know if PAN can protect MS14-068 (Kerberos Checksum Vulnerability - CVE-2014-6324) with IPS feature?

Best Regards

Narongveth.Y

Global Protect Windows Firewall

Finding issues with windows firewall with domain policy applied.  The Pan client is detected as on the domain and the network adapter is public for the firewall.  Under the domain firewall log on the windows machine I show several UDP blocks for the

satatic NAT with multiple server

Hi Friend,

Need some suggestion, I have one ISP. i dont want to expose my gateway Ip, problem is that i dont want Dynamic IP And Port based NAT, i want source static NAT and i have multiple server. i want source static nat for all server. please help

PHP vulnerability CVE-2014-3710

Hi,

In relation to this vulnerability: CVE-2014-3710. Does anyone know if PA have some signature (Threat) that can stop this?

http://php.net/ChangeLog-5.php

any help will be appreciated

Regards,

dicu

Global Protect HTTPS weakness - Help!

Hi,

I would really like an answer to this considering this is supposed to be a security product in the first place and I see several people have already asked the question.

We have just had a security audit completed by a third party, they highlighted