VM Firewall and VM-Panorama Licensing

Hi Team,

I am new to the VM-Series firewalls. Not really sure how to license these firewalls and the Panorama-VM series. Please help me with the document or page which will help me understanding teh licensing for these firewalls.

Regards,

Sanjay S

How can I get the CCATS for exporting in US

I bought a PA-220 from a reseller, however, it is a requirement for getting the CCATS for this product when shipping to Hong Kong. Can any one give me a hints on how to get such information? Or did anyone have any details or tips on getting those inf

I am looking for my PCNSA certificate in image

Hello,

I have completed the PCNSA exam.

I have been sent from Credly to accept my PCNSA bagde.

The problem is that I can't find the image of the certificate where it shows this (example: example_certificate  )

do you know where I can get it?

When I c

Panorama monitor url address

Hello.

Can't I check blocked URL sites in the traffic log if I don't have a URL license?

Palo alto upgrade

I am upgrading from 9.1.10 to 10.1.8

I can download and install and reboot  9.1.16 and then download 10.0.0 and download install the latest ver 10.0.11

and then download 10.1.0 and download install and reboot 10.1.8. Is 

Global Protect Authentication with Okta Radius + LDAP Group Mapping

Recently stood up a GP Portal and Gateway for the company that I work for. At the moment, I just have a radius-auth-profile setup to point to our internal OKTA MFA Agent which works fine, however, I also need to read and identify Security Groups usin

SNMP Trap Monitoring

Hello,

We were wondering about the feasibility of configuring SNMP traps for some of our Firewalls instead of using SNMP polling.

Currently we're using SNMP polling to monitor information like :

- Interface status
- Interface bandwidth
- Temperature
-

Import ssh private key to Panorama so it can access the syslog

To connect to logpoint, I need an ssh private-key. How could I upload this key to a Panorama?

Issue with routing possibly?

Needing a little help. I have a PA 5220 within a secure enclave (so no connection to the internet). I can ping a gateway in another enclave without any issue but when I ping the network beyond that gateway I get no reply. My GW external interface and

NFS sessions undecided after fail-over

Situation:

NFS Client src:828 dst: 2049 --> PAN 7050 HA Cluster --> NFS Server (NFS Session is up and connected without issue)

Palo alto cluster fail-over occurs (upgrade/issue - doesn't matter)

NFS Client src:828 dst:2049 -->PAN (Session is marked as

Failed to delete certificate - Invalid Location / Permission Denied

Hardware: PA220

Version: 10.1.5-h1

I'm trying to use a certificate that appears to be having issues. I first noticed the issue when I attempted to create a certificate profile using a trust root CA. When I try to create the profile, it fails to cre