Global Protect Connection Issues

Since upgrading to Pan OS 11.0.2 - been having issues connecting. Seems to be a cookie issue where cookies are not be regenerated after expiration. - I will see cookiie expired in the Palo monitor.

If you wait 5 minutes and try again - you normally g

Rollback Multi Virtual System Capability tick box on the Firewall.

Hi team,

Can you help me with an issue that has occurred.  We were on the process of adding an extra vsys on our firewall when we realized that this model of firewall requires a license for it to be activated.

Since there was no license, we have

vulnerability block-ip inoperative

I put anti-spyware vulnerability protection

critical, high The action is set to block-ip 1800

From the threat log, we can see that spware is effective, but vulnerability is not effective, it is drop, not block-ip

I also checked flahs like client to s

Palo Alto Firewall Lab

Hello

I just finished a Palo Alto Firewall course and I want to practice what I learned. I have a PA firewall as a virtual machine.

Where can I find some free practice labs with questions and objectives, for hands-on work?

And what software do I need

Device Telemetry to Cortex Data Lake

Hello,

just finished to setup Cortex Data Lake on my PA-220 (without Panorama, using the Hub).

After enabling Telemetry (as asked by 10.0.1) and setting up the Telemetry Region as my Cortex Data Lake region (Europe) the status for Device, Product

SSH Proxy supported ciphers and OpenSSH configuration

Currently PAN-OS unfortunately does not support recent ciphers for decrypting SSH.

Does anybody know of a tested configuration of the sshd_config in Ubuntu Server so that is supports:

and 

Cannot raise a ticket: Saml error, contact salesforce help!

Hi

I am a PA customer, I am trying to register a case, but triggered single sign on error and insisting to contact the salesforce support! I dont understand it. I cleared the cache, changed the browsers, no joy.

Anyone experienced this?

Thanks in advan

DNS Server Profile on a vsys

I set up an additional vsys for a different network with it's own DNS servers, which send the integrated user-id to the relevant domain controllers. A DNS Server Profile and proxy have been setup in the additional vsys. But the user-id DNS requests a

Application and Threat update failing

hi,

I am trying to update my content (Application and Threat) under Dynamic update, however it is continuosly failing with the below error,

Enqueued Dequeued ID Type Status Result Completed
--------------------------------------------------------------