Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
I have the firewall 3220 model in the 9.1.11 version in HA mode.
I can see all the aggregate interface in passive firewall is showing down. i want to know is this expected behaviour or not because I checked the below KB for some mode it is expected be
...
Hello
As PAN-OS CLI is locked, I don't have the ability to run a script and increase the CPU of my VM-series instances in Azure VMS.
I'd like to test and demonstrate the scaling (IN/OUT) feature regarding CPU level (high/low).
Did someone knows a way/s
...
Hi all,
I need to make work a voip server behind my pa-3020. The server is using stun protocol and requires that nat is not symmetric.
I've tested a public stun server (for example stun.telbo.com on port 3478) using pystun3 (a python tool to retrieve
...
Hello,
After a factory reset of the Palo Alto PA-3220 (Firmware 10.1.1), then a reboot, I cannot access any of the PANOS partitions (maint-sysroot0, maint-sysroot1, etc.).
And this message appears when I select one of the partitions in the menu (grub):
...
Hello, after implementing SSL decryption we're trying to improve visibility and noticed that files to dropbox web aren't shown correctly
When downloading from the dropbox website, the file names are correctly shown, but when uploading the files are r
...
Hi Folks,
We had 5 vsys active on the firewall. We had configured separate EDL for each vsys. My query is when we check the EDL Maximum capacity on the firewall will it show the Total EDL capacity utilized for 5 vsys capacity utilized by each vsys
...
Hi,
I have several TpLink Archer Mr400 4G Router. I setup Ipsec VPN tunnel between PA-220 and them many times. But new one is not success at Phase2.
Phase1 IKE is green so devices communicate. But Phase2 Tunnel Info is red and i can't see any tunnel
...
I got two devices 3020 and is running with HA Active/Passive.
First, I have download and install "Application version 384-1877 (07/18/13) and Threat version 384-1877 (07/18/13)" on the Active device and I select Syns ... to peer.
After that, I issue "r
...
Hi All,
I have two PA-3020 that are HA setup, version 9.1.9.
Since the beginning of March, I have found that dynamic updates often fail. Strictly speaking, downloading images is normal. However, one firewall updates normally and the other fails to upd
I set ip address 192.168.1.254/24 in the ethernet1 which belong default router in the vsvy1.
I try to set the same ip address in the ethernet2 which belong another VR in the vsvy2.
When I commit, it will display duplicate address.
I just do some lab ab
...
Hello,
I would like to know if it's possible to take a packet capture of the traffic generated for path and link monitoring? thanks
I am facing an issue while trying to update the license
I am able to ping the google dns and updates.paloaltonetworks.com
admin@PA-VM> ping host updates.paloaltonetworks.com
PING updates.gcp.gslb.paloaltonetworks.com (34.96.84.34) 56(84) bytes of data.
As the subject states, one of our FWs is logging a 'Device certificate expires in 15 or less days' message once a day. All certs are active/valid with the earliest expiration date sometime in 2023. I've been seeing this alert of at least the last 20
...
malik.kecioglu@barikat.com.tr can access Support Portal but when he click Support case ,get a error.I checked his user ,everything looks ok. I can see all support case.could you please check malik.kecioglu@barikat.com.tr user. regards
Today I found that Application and Thread ID 8559-7361 is incorrectly categorizing US IP address as if they were from China and therefore blocking all the traffic to these destinations. The only way to fix the issue was to revert back to version 8558
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
