General Topics

problems after RMA of an active-passive pair

just to give a baseline - hardware are pa-5220, running 10.1.6-h6, HA (active/passive), device managed by Panorama.

Long story short - one of the firewalls got stuck on a reboot cycle where the firewall would reboot every 85 minutes. The data plane

ECMP

Dear Team,

Our question is "How can the firewall choose the route without configuring the ECMP"

Appreciate your support as mentioned in this documentation

https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-networking-admin/ecmp

"Without this

Register Used PA-820

I need help. I bought a used PA-820 off eBay. Works great!

When I try to set up account on support.paloaltonetworks.com, I enter the serial number and SO.

However, each time, the registration fails. I get an error message telling me to try again la

traceroute application allows tcp port 80

Hi,

Received a call from a client said their external scanner shows their servers behind the firewall allows tcp port 80 connections and able to passive finger those servers, but there is no firewall rule permit tcp port 80 to those servers.  Digging

DNS Sinkholing - missing related traffic logs on windows machines

Since we configured dns sinkholing for some stuff like parked, malware domains, we are seeing related threat logs but no associated traffic logs pointing us to the source behind the queries. Recently we tested it on Mac machines and we do see traffic

SNMP OID Interface Throughput per Interface

SNMP Nagios OID interface Interface Throughput per Interface

Hello good afternoon, first of all thanks for your collaboration.

I have a question, can someone tell me, the exact data of the OID or to build the troughput detail, to monitor the "thr

Ansible Role for PANOS upgrade

Hi All ,

Do we have any role for PANOS upgrade in collection : 

paloaltonetworks.panos

Thanks

Public Cloud Server certificate validation failed.

I get this error message “Public Cloud Server certificate validation failed. Dest Addr: wildfire.paloaltonetworks.com, Reason: self signed certificate in certificate chain”.  Kindly help me resolve the issue. 

Two IPSec with same subnet on their end

I can't find a How-to document or community comment on this exact issue.  Some that are close.  And maybe I didn't search with the right terms.

I have one customer that connects to a resource on our network.  We set up an IPsec VPN between them and

Renewal period for licenses

Me puedes ayudar. Que periodo se toma en cuenta cuando hago una renovación de licencia con diferencia en la fecha original que tenia que renovar.
Por ejemplo mis licencias vencieron el 22 de febrero, pero las renové el 22 de noviembre, respetan las f

How to remove subscriber added in support cases that has been raised

Have Raised case from customer support portal ,unfortunately have added different person in subscriber, i need to remove him now as every time he is getting mail if any update on that case.

how should i remove him ?

Policy Edit - Search by IP

Am I missing something, or is 9.1.x Pan-OS still unable to search for address objects by IP address when editing policies?

Surely there is a way to do this... our workaround was to simply rename every object to be 'name - IP'.. but we have 4000+ ob

plao alto 850 SFP Ports

hi, is there any module or convertor that can allow using SFP as etherent and what exact part number of it please?