General Topics

Advanced Routing - NAT for overlapping networks between 2 logical routers

Hi,

We have a Palo VM with advanced routing enabled.

We have 2 customers with overlapping networks (172.16.0.0/24). Those networks must be accessible by the same servers (in connected network 10.1.1.0/24).
Customer1 network is routed via a static

Humps and bumps with the Palo Alto firewall integrated User-ID agent and Active Directory.

Introduction

The User-ID agent links an IP-address to a user account. It enables identifying your users so that they show up in the logs and you can use them in rules. One can choose between the integrated agent or install the Windows edition. Proble

Windows User-ID agent not collecting mapping

I'm working on getting a Windows User-ID agent set up for a customer and it's not collecting logs.  Checked all permisssions and service account user is in Event Log Readers and has permissions to both the install folder and registry entries.  Just a

Route-Based VPN between PaloAlto & Strongswan

Hi! 

If anyone have some experience about this topic? I need a vpn between our PaloAlto and a virtual machine with strong swan installed. To route some traffic from our local network to this vpn tunnel. How to make this possible?

Monitor Power Supply of PA-400 by SNMP

Is there a way to monitor power supply redundancy by SNMP?

I found this, but these values are not a SNMP object.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClbfCAC

similar to this; these values don't exit on my PA-440.

Firewall can't be added to VM-PANORAMA-25: Device limit reached

We have a new Panorama VM-25 but we can't add any devices to it.  We get 'maximum device limit reached' when we try to add the first FW.   We have valid licenses so not sure what the problem is.  I have tried deleting that device management license 

need help running client automatically in WInPE

is there a way to load the client and connect automatically usingh global connect? Has anyone done this on winPE?

Logging - 5450

Any tips/places to look into when not seeing logs locally on the firewall? new install, PAN OS 10.2.7

Your membership has expired or has not been approved, please contact Palo Alto Networks Support PA410

Your membership has expired or has not been approved, please contact Palo Alto Networks Support.

Please help to register the device

PA200 Android IKEv2/IPSEC PSK

Hi everyone,

I received an old Palo Alto PA200 firewall from a friend who works in networking, and I decided to set it up in my home lab to explore its interface and features. If I like how it performs, especially the monitoring capabilities, I might

Do I need to deploy a switch between 2xPA firewall (Active-Passive) and 1xJuniper MX router ?

Do I need to deploy a switch between PA firewall (AP) and a Juniper Router in order to have an aggregate ethernet interface (AE) connected? Please refer to the diagram attached.

The setup is below:

PA-1 (A)-------------PA-2 (P)

|