Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello
I'm interested in the Palo Alto virtual or VM-series appliance that would be broadly equivalent to the PA-5250. I realise the product selection is best made based on requirements such as sessions security rules, dynamic ip addresses, security
...
We are using PANOS 9.1 and latest DNS security. Any thoughts on these errors from proxy log? 172.16.1.1 and 172.16.1.3 are Microsoft AD DNS servers.Can these be effecting performance of traffic?
2020-02-17 08:30:23.583 +1100 Error: pan_dnsproxy_recv
...
Hi Folks,
One of our customer is facing CPU utilization of around 50 to 65 percent during the production hours.
The firewall model is PA-3220 and the PAN-OS version is 10.1.5.
Checked the session utilization, Packet buffer and descriptor all is
...
Hello,
I run into behavior that I can't explain.
We make teams available on the virtual desktops (web-based & desktop app)
We only want to block the use of audio and video within the functionality of both teams options.
Users are not allowed to use t
Hi guys, greetings.
On of my customers asked me a simple question about palo alto database. How does it work internally? Is there any SQL database internal on PAN-OS? Should it be accessed by any external factor like APIs os something like that?
Hello Friends,
We have Palo Alto firewalls (various models like 3050, 5220 and 3220) which are in HA (active-passive mode). IPSEC tunnels are working fine when traffic is on active gateway. The issue is, when we failover traffic on passive gateway,
...
Hi All,
We currently have a pair of PA-5250 firewalls configured in active/passive. We have 4 port channel groups configured with the condition set to 'all'.
The question i have is we are using eth1/1 & eth1/2 as HA interfaces if one of these goe
...
I have GlobalProtect running for machines when they are off the network. Is there anything that I need to setup that would allow them to be able to print to their local LANs even though the agent is connected back to the FW? I am currently testing
...
User ID agent showing access denied after microsoft update on the DC and I nothing I have tried has fixed it
Hi Community,
I have a spare firewall PA-820 that I need to upgrade from 10.1.6-h3 to 10.2.0 but it returns an error asking me to update the content version. Please see picture below:
But when I try to upload the content version, it asks me for a l
...
Hello,
We are trying to use Cisco Prime as an SNMP manager for polling/snmp traps for our Palo FWs but according to Cisco, they only support Cisco MIBS. I was wondering if anyone could recommend an SNMP manager tool for Palos that we can use for po
...
We have purchased Threat Prevention subscription for our older PA-200. I asked for both Premium Support and Threat Prevention but we were sold only Threat Prevention because supposedly PA-200 is no longer sold by PAN. But I cant seem to be able to pr
...
Hello.
I followed the video while watching it, and I want to send the log to the panorama server.
https://www.youtube.com/watch?v=B_ttlugnARE
The log is not being checked.
Is there a different setting to check the firewall log on the panorama s
...
Hello. Sir.
registering a firewall on the panorama server.
The firewall administrator IP is set to default.
In this case, how do I register the firewall on the panorama server?
Hi Team,
We have 3 PA-410 installed with PAN-OS 10.1.3. We have Advanced threat prevention license installed on the firewall and we are not able to see the Anti-virus update on the firewall .
The firewall is able to communicate with the Update serve
...
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
