Resolved! Palo Alto Support Contracts

I recently purchased a firewall with a 1 year support contract. I received it three months ago and haven't had time to deal with it. When is the official start date of my support contract? Do I have a certain amount of time to register the box before

Resolved! active / passive setup(connected switch/router arp cache timeout)

I was starting to setup an active/passive system and once the HA was enabled, I lost connection to and from the internet.  I found it was an ARP cache on my router.  Now if my PA's failover the outside IP will startup and issue a new MAC for that IP

Resolved! User ID Agent Ignore

I have user id agent 4.1.6-5 on PAN OS 5.0.1.

Is it possible to tell the agent to ignore certain IP addresses, I know how to do with the users by using the ignore list text file.

Resolved! MAC address spoofing

Does someone know if it is possible to spoof/change the mac-addresses from a VM PAN 100? Our ESXI Vendor won't enable Promiscuous Mode, so we don't have data through our Ethernet ports. I guess maybe, when I can spoof the MAC address, it might be wor

Resolved! GlobalProtect portal corrupt.

Running an 2050 Active Passive HA pair.

Yesterday I noticed that I couldn't login with the Globalprotect client. After some investigation I noticed that I could log in on the Globalprotect Portal web page, but after the login the page which offers the

Resolved! How to generate a CSR from a Self Generated Palo Certificate

Hi There,

I am struggling to generate the CSR for a self generated certificate on a Palo firewall (this is the first time I am doing it).  I did look into all the documents in the knowledge base and they seemed to be very confusing. 

I have generated

Resolved! ICMP Source-Quench?

Hi,

In Cisco ACLs, they have the option of adding rules like "access-list OUTSIDE extended permit icmp any any source-quench". Does Palo Alto have a way of distinquishing ICMP message types? I've tried looking in the application library, and ICMP show

Resolved! Panorama and Threat Map

Hello togheter,

few days ago we started to forwarding our logs from our PAs (located world wide) to Panorama.

I really like the Threat Map under the App Scope Monitor tab.

Do you know, if its possible to configuried it so, to have an overview of all PAs

Resolved! I extended an IP Range and now I cannot see those user-ids in the monitor.

I can see the userid's in the agent running but they are not showing up on my logs

Resolved! using vpnc with Palo Alto 4.1 IPSEC/Xauth

It seems like the freely and widely available vpnc client should work just fine with the palo alto ipsec/xauth setup, however I must be missing something. I have it working with IPAD with the shared secret + XAUTH with group/password, but with vpnc o