General Topics

Updates - everything seems to resolve to San Jose?

I thought that updates.paloaltonetworks.com uses a CDN so if you're in Europe you use a local server for updates.

From the UK it resolves to an IP in San Jose and this seems to be the case on any online lookup tool and traceroutes from various sources

VPN Performance Problem

Just wanted to all let you know about a VPN performance issue we have with one of our customers.

The customers is running an IPSec Site2Site Tunnel to a third party company (Cisco Device). They have a PA-5020 Cluster (5.0.12) and the Tunnel link is pr

PA-FW Update getting Fail

Dear Experts,

We have PA-FW getting fail during the Update. Firewall has three zones: Inside,Outside and DMZ.

Management IP address of PA-FW is passing through Inside zone of the PA-FW. Management interface of the FW has the gateway on the core switch

About Virus/Win32.olemal.adp

Hello,

Does anybody know more about Virus/Win32.olemal.adp?  ID:1209888

Because the information in the Threat DB too little on.

Thanks

Peter

Custom App for local Proxy

Hi community.

Is there an option to setup a custom app for a locally installed proxy. The idea is to distinguish if the local proxy or a proxy somewhere is used. App override is not a valid solution because of lose all the Content-ID features.

Best reg

invalid configuration. Schema verification failed. profiles -> decryption unexpected here.

Hello,

Out of the box PA-500 steps taken,

1. down graded version to 4.1.10 successfully.

2. under device -> setup -> management, i changed the management interface IP, and on commit I get the following error.

commit failed

invalid configuration. Schema ve

where is stats-dump refer to the following logdb-quota?

Hello~,

I feel like that When do export stats-dump file, stats-dump doesn't refer to original traffic log.

what do you all think about that?

it depends on customer network size until traffic full.

Traffic Logs have stored only for two days.

Related logs m

versioned configuration files locked

Hello,

Since my partner finished commit of a PA-500, I have found the versioned configuration files locked on No.11, show as below. I have no idea about why it happened. This problem make this device stop to increase versioned configuration files afte

Creating VLAN's,.

Hi All,.

How to create VLAN's in PaloAlto?

Created VLAN interface 1 (ip 10.10.10.1/24) and created the vlan "sales" for this VLAN interface.(configured zone, applied to default router)

Created VLAN interface  2 (ip 10.10.20.1/24) and created the vlan "

opaque: Failed to check WildFire content upgrade info due to generic communication error

Any suggestions please?

I have it set to update every 15 minutes at an odd number of minutes to hopefully avoid "Let's all download at 00:00".

Doesn't happen all the time but it does happen more than I'd expect given we have a solid/stable leased line

PAN Active/Active Virtual IP?

I have active/active cluster and I want to have two virtual IPs for the cluster interface.

1) Are there any restrictions for number of virtual IPs (VIP) on one Active/Active cluster interface? Is it correct to have only one VIP per interface?

I have en

Panorama Log Server space

Hello Team,

We have hosted our panorama in a VM server . Where primary partition of the server is 70 GB and Secoundry partition is 40 GB.

Currently we have only the 40 GB to store the Pan Log . Please find the partition details.

tiwara@Panorama> show sy

User-ID records timing out?

I have an environment which has multiple USER-ID agents installed/configure and the agentless option via WMI.

There seems to be an issue with user-id records timing out. After x amount of time, users start matching on a catch all policy at the end bec

Creating VPN site to site tunnel access ???

Creating VPN site to site tunnel access ? with example ??

Thnks in advnc

Satish