Secondary IPSec tunnel with Prisma Access always down.

Dear community!

I have a dual S2S VPN configuration with Prisma Access with static route path-monitoring as well as tunnel monitoring.

The secondary tunnel is always down, only comes up when primary goes down. Do you know if this is expected behavi

unable to renew device certificate

Hi everyone,

i'm having an issue regarding the device certificate on a pa-440 panos 10.1.6-h3

at the moment i am getting a a message  device certificate not found.

but u don't have any options to get a new one in the GUI.

is there a way to trig

Shadow Rule warning

Hello

When apllying a rules in PA I get the warning message re shadow rule.

I have two rules where 

rule 1 allows SSL between source and dest on standard SSL port 

rule 2 allows SSL between the (same) source and dest on a non standard SSL port 

I get a

no RAID menu in maint mode for 5400

Hi all,

I can't find RAID menu in maintenance mode for 5430 appliance.

It definitely was earlier (at lease in 5200 series) so I was able to copy data from old SSD to a new one.

even in the guide there is instruction for this RAID menu option (step 11

Custom URL category issue

I have read through a number of URL category issues, but I just cannot find something like this and I am baffled so far. I have two users, inside and outside, that access a certain internal webserver. What I am trying to do is the following.

outside:

Netflow is not working after upgrade to the 10.1.6-h6, is it somthing know issue in 10.1.6-h6 PAN OS version

Netflow is not working after upgrading to the 10.1.6-h6, is it something know issue in the 10.1.6-h6 PAN-OS version?

Firewall- PA-3220

I have checked the NetFlow statics and seen that the firewall is sending the NetFlow log.

for reference, I am als

Maintenance Mode is not responding to any keyboard keys under Macos--micro usb

hi,

i have issue with Maintenance mode when connected to my macbook (Catalina MAC-OS--micro usb), is not responding to any keyboard keys  even when i set the baud rate manually (9600) but it working ok when entering normal console (no issue with keyb

HIP object for Disk Encryption Criteria

Hi everyone,

Can I check for Prisma Access HIP object for Disk Encryption with BitLocker with the option to check encrypted location (eg C:, D:) is Encrypted?

Facing VPN connectivity issues by using an external gateway in global protect

• Model: PA-450

• We cannot connect remote VPN from outside of our network by using public IP but connect from the internal network by internal private IP of the PaloAlto direct interface IP.

•  

  Note: PaloAlto firewall is running behind our internet rout

Inspection of traffic with PPPoE headers

I'm attempting to use a PA-440 in vwire mode to inspect traffic that is on the internet side of a broadband modem for security analysis. The traffic passes through the PA ok but non of the security policies seem to be triggered and no traffic logs ar

¨Password reset is not allowed in the user's current status" for a new account

A new user for the support portal created a PAN account and received the activation mail and clicked the link.

User now receives the message "You account is now activated".

User forgot the password he set. When he now tries to use the password reset