Peer certificate chain building failed due to unable to get local issuer certificate

Hello,

This is my first post here as I am a new customer of PaloAlto, but not new to networking. I have extensive Cisco background.

We are having an odd problem when trying to create an IKEv1 s2s tunnel between a remote PA220 and Cisco ASA 5525X head

Case creation issue

Hello,

This is Mohammad Qasim from Kabul, Afghanistan 

I'm trying to open case with Paloalto but the bellow message, please do me favor. 

Device and customer codes do not match a Support Account. Please contact a Super User to send you a registration

Firewall interface arp broadcast

The firewall was deployed route mode , the interface 1/3 direct connect the DMZ switch . I found the firewall interface （1/3 172.20.1.1）always send arp (broadcast to the subnet 172.20.1.0/24 ) .Is there someone know why ? The firewall hardware 3020 a

Subscribe to Newsletter

Hey team, trying to subscribe to the Palo Alto newsletter at https://security.paloaltonetworks.com/ but keep getting an error: An unexpected error has occurred. Please contact support. Is there a certain level of access I need in order to subscribe t

Expedition2 Beta - Help with Setup with Expedition Container

Hello, I am currently tasked to set up a container following the steps supplied with Expedition2 Beta Build. After the command "docker-compose up -d" there are newly created volumes but is unable to authenticate to ghcr. I have attempted to link my g

HA2 link goes down when enabling HA2 keep-alive - PA VM on Azure

I noticed HA2 link down between the HA A/P peers.

I tried to bounce the link but it didn't help

Disabled session synchronisation and HA2 came up

Re-enabled session synchorisation, HA2 link went down.

Disabled keep-alive on both active and passive fir

Unable to export the policy package

Hello All,

As per the recommendation from Palo Alto, I have executed the below commands on the checkpoint MDS. 

But unable to export the policy packets. The Size of the policy package was 1Kb. 

Please advise on this. 

Global Protect Portal Issues

Hello Everyone,

We have just noticed that when we are trying to connect to the GP Portal on the web. We are getting successfully connected over VPN but when going on the web we are getting an auth failed. We have cloud auth with azure. 

Errors on

tshoot firewall

Hello team,

There was a issue with 3 urls, so what we did we create rule and all user to access these site where 2 sites are working and there is one more site in same rule is not working,it shows below error.

we see the traffic showing incomplete, t

Commit error After PANOS10.1.10 upgrade

After upgrading from PANOS 10.1.8-h2 to 10.1.10 we start getting the following commit error.

• profiles -> spyware -> sink-alert -> botnet-domains -> dns-security-categories is invalid. Missing pre-defined DNS security category

Any idea to correct th

Windows User-ID Agents in Azure - Domain Normalization Not Working

Hi,

We have a really strange issue and hoping someone can help!

We are using Windows User-ID agents to query our domain controllers only for security events for user to ip mapping, we are not using the firewall native User-ID engines. We currently ha