Matching HIP in Decryption Policy

Anyone doing this? It is configurable in the policy itself but isn't referenced in any documentation. The firewalls seem to ignore the HIP profile configured in the decryption rule when matching/not matching traffic. 

When I configure the rule to mat

Applications not being identified correctly

I am running into a  number of situations where the applications are not being identified correctly and thus not working.  I can see that the applications is using the correct port, but the PA shows it is "web browsing", unknown, etc.  Examples:

KaKao

Dual VPNs with Dual ISPs with a Single Firewall to a Remote Site

Dual isp with tunnels have been configured. primary isp is on eth0/1 and secondary is on eth0/5.

Tunnel monitoring has been configured on primary tunnel. when primary isp goes down tunnel traffic will be shifted to secondary isp tunnel.

Physically

EDU-110/220 Still Available

I'm looking for the Self Paced version of the EDU-220 which used to be the EDU-110. Has this been removed. I don't have the time currently to go to an Instructor lead course and studying for my PCNSE.

Thanks

Rule works at one site but not another

Hi All,

I have a rule to block TikTok at a school and it works as expected.  I have another rule to block TikTok at another school and it does not work at all.  The rules are identical except that the first rule blocks some other apps as well.

I'

Another question on The Panorama certificate expires on 07-Apr-2024

Hi All,

I have Panorama and a few managed FWs

I have done the option1 - updated the latest content versions and reboot - so when I look at the system logs and search for

'( description contains 'renewal' ) I can see the generated message that the cer

User Interface delay on Monitor Traffic Tab

Model: PA-3410

PAN-OS: 11.1.1

Issue: Customer is facing the web-interface delay issue like when the customer Navigate -> Monitor -> Traffic Logs and tries to add the filter like src ip or the dest ip, there is delay of 5 to 6 seconds to display the

How to Check for CRC Errors on an Interface in SNMP

hi @all

I'm in need of snmp OID for the How to Check for only the CRC Errors, Reliability  in an Interface. I have seen OID's for general  IF-MIB::iflnDiscards, but it show overall error not the specifics.

Kindly provide us with an update.

Thanks in Ad

Issue when configuring 5G cellular interface on PA415-5G

Hello team,

Has anyone had success when configuring the cellular interface on a PA415-5G ?

Whenever we configure it and then insert the sim card, we loose the connection to the device and it reboot itself in maintenance mode

This happens eac

AD status showing in monitoring tab as host unreachable

We are facing an issue as while integrating agentless user id integration.

AD is pingable from management as well trust interface but in the Server monitoring TAB the status is showing 

PA220 Upgrade/Downgrade from 10.2.0 to 10.2.8

When updating the PA-220 from version 10.2.0 to version 10.2.8, the following error occurred today. How can this be resolved?

Custom Url Block Page

Hi,

I've developed a custom block that enables users to fill out information and submit it using a mailto link.

I'm attempting to achieve this using a form in the HTML code. However, upon form submission, we're redirected to another page with the mes

PA-440 lab license

I need to lab license demo pa-440

It was demo unit and need to register to PA website but i don't know who link to
I need help really bad. it's working with feature and Need lab license