HA and LSVPN in 10.1

Back in 9.x we feel like the HA peers had no trouble passing LSVPN from active to passive when an HA failover event occurred.

Now in 10.1 we're seeing about half of our sites fail to bring up the tunnels when HA moves from active to passive.

I've bee

System halts after login - using PA-VM v 10.0.6 eval hosted on ESXi 5.5

I have installed the VM and on boot up I can log in with the default user/password admin/admin but my system then crashes shortly after that.

I unchecked time sync

Global Protect - "A valid client certificate is required for authentication" but works correctly for X days after PA restart

Hi all,

Just putting this out there to see if anybody else has had similar issues.  If you have, I would really appreciate you letting me know please!

Palo Alto PA-820 - HA (active/passive) - PanOS 9.1.5

For several months we have had intermitt

Palo Alto PA5220 is not login after password complexity changes

We changed the password complexity and history settings on our firewall a couple of days ago.
After committing the changes the local users are not able to login on the firewall.
So we tried to boot into maintenance mode by connecting through a console

MacBook Air M1 connection problem

After my computer upgraded to VENTURA 13, I cannot connect remotely. It constantly says "STİLL WORKING". There is no lock status in the privacy and security settings, as in previous versions. This is hindering my work. You are welcome please help.

IKE protocol notification message received: INVALID-SPI (11).

Dears,

I have a site to site VPN between PAN 7.1.6 and Cisco ASA 8.2.5, I'm receiving a lot of Invalid SPI error. I tried to reset the VPN many times and still having the same issue. This issue by the way is casusing a lot of packet dropes in the VPN

Palo Alto Customer Support is a joke

Been on hold for serveral hours, only to to be told there are no support engineers available ATM!!!

Machine Learning engine for Phishing stopped, please update your content

Hello.

From yesterday(26.05.2021) in two independent environments on the firewall I can see messages: "Machine Learning engine for Phishing stopped, please update your content".

Does anyone have a similar problem and know how to fix it?

Regards!

RMA

Hi I can see that mi shipping information in my case 02366569 for the RMA, the web didn´t save well the shipping information, I wrote a post on the case, with the address correct, Do you know if it is enough or I must do something more?, please. Than

GlobalProtect client behind a proxy, configuration help

I am trying to establish an ssl vpn connection using the globalprotect client, but the client is behind a proxy using a configuration script.  I have tried calling paloalto support but they said their client is not proxy aware.  Does anyone know of s

SYSTEM ALERT : high : Machine Learning engine for PE stopped, please update your content

Dear all,

since a couple of hours I'm getting the following alerts every 5 minutes:

SYSTEM ALERT : high : Machine Learning engine for PE stopped, please update your content

I checked via CLI and I have the latest content installed.

Just in case tri

SNAT to a FQDN

Hi All,

I am trying to create a NAT policy that would NAT traffic from my internal Zone to and update server.

the problem is i have FQDN of destination server which resolves to multiple different IPs.

I need to find a way to complete this NAT polic

rcv_fifo_overrun on all ethernet interfaces

Hi All,

I want to ask if you encountered the same issue after updating the firewall software to 10.1.6-h6, we started seeing these errors. 

Does anyone know which version could fix it?

account type evolution show on palo alto support site

on  https://support.paloaltonetworks.com/ site showing my account type eval. Can not register Davies on support portal.