User-ID - Windows Server 2022 , not working

We are running a Windows server 2022 and PA-3220.  I have the user-agent put on a seperate Win 2022 server.  The firewall when communicating with server is getting dropped code 5986.  Under my Server Monitoring it shows Connection refused(0).  

lsvpn problems with connecting to gateway

We have a lsvpn architecture and we are having problems with one of the satellites connecting with lsvpn gateway. We configured and maintaining this lsvpn for the past 1 year and dealt with most of the problems. Usual one being credential cookie expi

device telemetry Failed to reload config files

Since the update from our firewalls to 10.1.10h2, i see in the system logs the event : Type: device telemetry Event: config-reload-failure Description: Failed to reload config files. The sent of the telemetry files is working. This happens every time

traffic log database exceeds alarm threshold value 100% of total allowed size

Hello community,

On my paloalto 850 I get several alarms every day stating:

"Current suz (xxxMB) of traffic log database exceeds alarm threshold value (100%) of total allowed size (xxxMB).

On the CLI a "show system disk-space" shows the disk on n

PA 440 dynamic updates

I am installing a PA 440 v 10.1

I can ping IP Addresses on the Internet using my internet interface as source

I can https inbound to the firewall after configuring a management profile 

under Device -> dynamic update or license check my attempt a

IPSEC tunnel due to timeout problem

I was configure remote 10 branchs connect to Office by IPSEC tunnel. Each branch connect to Office bandwidth  256kbps,512kbps, 1mbps. So someone branchs tunnel automatic disconnect.

Manual remote tunnel device(Cisco RV042) reconnect  to PA2020 error.

Configuring Dual Leased Lines on PA-220 for Efficient Failover

Hello,

We've set up a dual leased line configuration with BT, featuring two separate gateways. Our primary aim is to ensure continuous connectivity, should one of the lines fail.

Our PA 220's static routing has been configured as follows:

- For BT1

Pyhon pan-os get Layer3Subinterface on panorama template

Hi,

for some time i have been using and testing, the different APIs available, and im actually doing some

tests with the python-os module, to get some data from some of out panorama templates.

I have been succesfull on getting Physycal interfac

Login Banner Need to Remove From the CLI Access of the PA Firewall

Is it possible to disable the login banner only for CLI access to the Firewall? (SSH) 

GRE tunnel vs LSVPN which one to use for HUB and Spoke

Hi All,

I am researching between GRE and LSVPN tunnel for a HUB and Spoke design, basically for ISE authentication traffic from Meraki wireless to HUB ISE.

But i can't seem to find any document stating which one is fit for this purpose or what ar

Child objects or override calue

I have been looking at the best approach to push a rule to multiple sites, but using a different value for the source address object at each site. For example, allow http from the users subnet to the internet, and the users subnet is different for ea