Expired Security policy behaviour

What is the behaviour if schedule is expired on security policy? Existing established session terminated and new session will not established? What is the solution if existing established session not terminated after expired security policy 

GP Client Log in and GP Bootup

Dear Team,

Please clarify the below points!

Connecting PA 220 home user

Hello,

I bought a PA220 and have got the Mgt cable into my home broadband and have connected and got it registered.  The IP address i gave the Palo is on the same 192.168.0.0 network as my home broadband scope.   How do i get the traffic going throug

Recently purchased 2nd hand PA-3050

Hi All,

I recently bought a PA-3050 from my local auction house. Unfortunately I was not provided with an IP address of the MGMT interface so I am unable to connect to the device. I have gone through some of the usual default IP's however none of t

Adding Multi-Vsys firewalls into Panorama | issues, steps, and guides

Hi LIVEcommunity,

I hope this article finds you healthy and well.

A few months back I ran into a few road-blocks and "gotchas" when trying to add an existing multi-vsys firewall into Panorama and manage the firewall with a proper Template stack.

Ther

User-ID Agent - [Error 115]: Cannot open security log for DC..

These errors just don't make sense to me, I have followed everything as required.

I am currently doing this in my lab and I'm stuck with this error about permissions, I have given permisions for event log readers, server operators and distributed com

HA running configuration not sync

Hi Team

We are facing the issue with HA running config not synchronized 

>> We have restarted the both active and passive firewall management server and push the configuration by execute the cli command 'request high-availability sync-to-remote runn

Intermittent sites not loading

Having issues with palo alto pa-820. Some times when users try to load sites they just don't load. Wait some time and site usually loads. Some times it is fine, loads fast, users not getting any errors. No changes made to cause issue. Thinking it is

HA Cluster Topologies and experiences

Has anyone had some hands on experiences with the new clustering features?   I've read a bit on them, but like the post below, am struggling to make sense of the actual functionality/workability of the finer details needed for this setup as to how it

test policy match cli tool returns nothing. what does that mean?

test policy match cli tool returns nothing. what does that mean?

It should match some policy right ?

Does that mean it matches one of the default policies?

Default security rules, hit count and Apps Seen

Hi, I'm noticing a weird behaviour with default security rules "intrazone-default" and "interzone-default":

• For "intrazone-default" I can see how many apps have been seen by the rule, but if I click on the "Apps Seen" link nothing happens;
• For both "i

DNS Query Enchancement

Running PANOS-10.0.9. In GP Network>GlobalProtect>Portals

Under App -Resolve All FQDNs using DNS servers assigned to by the tunnel(Windows Only) is Yes by default.

I cant see these dns logs in Traffic logs?