PA-200 SAP router dropping tunnel

We have a PA-200 (running OS 5.0.4) being used as an SAP router. NAT translating between an inside 17.20.x.x address and an outside static global address (IP = a.b.c.d) which pushes all traffic to its VPN peer IP e.f.g.h. When a completely new sessio

Troubleshooting device with orange status light

Greetings all!

I have a pan200 with an orange status light. Power, fan and temp are all green. Status stays this way through reboots and the web server on the mgmt port is not responding.

If I console in, the only issues I have seen so far are the TP l

Reports on QoS?

Is it possible to build reports for QoS? I don't see any values that make sense in the report options.

Or is it possible to increase the timeframe on the QoS Statistics page? 2 minutes isn't very long to watch traffic.

I have a QoS rule that only runs

Migrating exchange

Hi,

We are trying to migrate the users from Exchange 2003 to Exchange 2010. To do this migrating the traffic go thorugh palo alto but when i start the migration i receive this error "MapiExceptionNetworkError: Unable to make connection to the server.

need help with u-turn nat between zones

Hi all

I have read through the NAT tech notes and manuals from this site but canot seam to get this feature to work, i have u-turn nat enabled and working brilliantly in the same zone but i cant get the u-turn feature to work between zones/seperate ne

LDAP (Active directory) Authentication for administrators

Hi,

Im trying to configure my PA to validate with my AD to can manage it. I have create a group in my Active Directory called (com_cos), this group has the user to manage the PA. I have add this group in Group mapping and Authentication profile (Allow

Management Interface Traffic to Port 135

Hi All,

I have a query regarding a management interface which is showing a lot of traffic (several times a minute) from the management interface to various IP's on port 135.

Has anyone seen this before? Why would the management interface be sending ou

NFS times out after 60 minutes

NFS times out after 60 minutes even when setting allow all ports between servers. Before that the NFS protocol got it's session timeout increased to a few days, but it would still timeout after 60 minutes. iptables did not have this problem with the

Overlapping Vwires - is it possible?

Got a situation where the deployment requires (in very basic terms):

VWIRE1 = Ethernet1/1 and Ethernet1/2

VWIRE2 = Ethernet1/2 and Ethernet1/3

Now this is not exactly 'standard' practice - but is it possible?

In what partition is PANOS stored?

PAN 3020 only support PAN DB URL Filtering?

Hi,

We had purchased PA 3020 and it comes with v5. Currently the URL Filtering is PANDB, is there any possibility to convert to BrightCloud URL filtering?

It seems that there isn't any trial license available for PA3020 for Brightcloud URL filtering, a