Can Policy-based forwarding be used for routing the firewall connection for updates?

We've got a firewall that doesn't have a management interface connection.  The default route for the firewall is configured across a tunnel interface. The service route has been been configured to use the outside interface- there's no option to use t

Problem with the access to the VPN Globalprotect on Android phone

Firewall rules for IPv6 targets

We are trying to implement IPv6 in our network, and as part of this deployment all our network resources should run on dual-stack (IPv4 & IPv6). Address objects Types in our firewall policy rules have been written based on IP (IP Netmask and IP Range

Radius authentication not working

We have configured Radius on our VM Palo but its not working. Provided screenshots of configuration we have on the FW and output of test command. Routing is defiantly in place as we can ping Radius server, however no traffic on 1812 reaching PacketFe

URL Filtering log with action allow

Hi Folks,

It seems my whole life is a lie... Apparently PAN FW will generate URL log for category with action set to allow.

Yep, and the funnier thing is that you don't even need URL filtering profile applied on the rule. Someone may say I am crazy

DHCP Relay: multi-hop, session management and IoT Security

I have a couple of questions about DHCP Relay, multi-hop, sessions and IoT Security.

This is the situation I am dealing with:

Clients are configured for DHCP. Their gateway is a Cisco L3 Switch acting as a DHCP relay.

Red situation: the L3 switch point

How to reset Support portal passwords for other account members?

Is there a way to send a password reset link for other members in a support portal account? I have a Domain Admin/Super User account that has not logged in for a long time. When the user attempts to request a password reset themselves they get a "Pas

Linux NIS User-id Integration

Hi everyone,

     Is it possible at all to integrate a Linux NIS server to be used by User-Id? From what I understand the NIS does not even log logon logoff events. I have a feeling that I am answering my own question. Also is it possible to use Syslo

Serial port on 4050 not showing output

I picked up a used 4050 on ebay. It booted when I got it and I missed the prompt window to type "maint" so I could wipe it. Now I get no display. I am getting pretty frustrated with this unit. Does this console access acct weird by design? Why did it

Migrating PA5020 to PA5220

Hello, 

I am in the process of migrating an HA pair PA-5020 on version 8.1.22 to PA-5220 that shipped with version 10.1.3.  From what I researched the 5020 is end of life and can only go up to  OS ver to 8.1.*.  My thought was to downgrade the new

Migration from PA 220 to PA 440

I am in the process of migrating from a pa220 os 10.1 to a pa440 os 10.1.3. I imported the configuration from the pa 220 to the pa440 I ran into three issues:

1.we are getting 1gig from the ISP and even with Qos disabled we are only getting 150mbps