sd-wan setup question
set up SD-WAN in PANOS. If you look at the manual, it says to use it in conjunction with the panorama. Is there a way to set it up without linking it with the panorama?
set up SD-WAN in PANOS. If you look at the manual, it says to use it in conjunction with the panorama. Is there a way to set it up without linking it with the panorama?
When I tried to log in to the support portal, getting the below error, earlier I used to login into the portal. An unexpected error has occurred. Please contact support. Thanks,
Hi all, hoping someone may be able to assist with an issue . these logs are shown only in GUI with high but same logs if see from CLI didn't show up. We are seeing that every 2 hr our PA device generates messages devsrvr: exiting because missed too many heartbeats mgmtsrvr: exiting because missed too many heartbeats Thanks RR
Looking for GP authentication troublehsooting tips or if anyone else is experiencing authentication issues using SAML on globalprotect (effects every single agent version newer than 4.1.1). Our issue seems to only effect macOS users, but my shop is 99% mac users, the windows users rarely connect to the VPN and never complain. We upgraded to PAN ...
Cannot login to the Cortex XDR portal. Also cannot log any Support Cases. "Unauthorized. Error 4011 when trying to log onto a Cortex XDR tenant. Then trying to get to log support tickets the following: Salesforce Single Sign on Error, we can't log you in because of an issue with single sign-on. Contact your Salesforce admin for help Tried ca...
Hi,Planning for upgrading PA-850 to PA-3220, Just wanted to be sure that if we download the current running config from PA-850 and import it to new PA-3220 device, will that work?Precision configuration of the PA-850 and managed by a Panorama.
Hello, I am following this guide to set up ISP failover. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLL8CAO The problem is that my failover ISP (Starlink), does not provide me a static IP address How would you recommend accomplishing what I want to do when the failover ISP provides a DHCP address? Thank you!
Hi Folks, I am getting the below alert in the panorama every day. I found the below article for resolving the issue.My concern is 1. Why is this necessary? I've never had the issue before v9.1.x2. Do I need to do this every 3 months from now on? Issue: Alarm “Device certificate status expired: it cannot be renewed” Article: https://live.paloalt...
Hi, We launched a sslab test for a GlobalProtect Portal website. Our note is B. We would like to improve these two things but we dont know what it can be done in PA config. These are: There is no support for secure renegotiation. MORE INFO »This server does not support Forward Secrecy with the reference browsers. Grade capped to B. MORE INFO »...
Hi All, I am trying to add new interface to the ospf and pushing the configuration from Panorama to firewall, But I am getting the below error while commiting "client routed phase 2 failure", Commit on secondary firewall is succeeding. Issue is only on Primary firewall. When I checked the logs in Palo-Alto firewall, I can see the below:route...
ACC-SSL Activities 'ssl/tlsother'What means? Please note you are posting a public message where community members and experts can provide assistance. Sharing private information such as serial numbers or company information is not recommended.
Hi All, I was just wondering if anybody had any experience of 10.2 on PA-220 I am thinking of upgrading and haven't heard anything concrete either way. As always thanks in advance for any help.
Hi Team, I have already configured the Vsys ID 15. Now I want to chnage this Vsys ID to 2. Is this possible ? Please help me here
I've installed a XDR agent to a workstation, and it's not connecting to the server. I've installed the it on different workstations and that's working fine. After the installation the agent never connected to the server and showing it's disabled. What could be the issue?
It is linked to equipment A, B, C, D in the panorama. I want to extract only the traffic log for equipment A. ↓ ↓ ↓ ↓ ↓ ↓ The above command extracts all A, B, C, D traffic logs. ↓ ↓ ↓ ↓ ↓ ↓ ↓ scp export log traffic start-time equal 2014/05/16@12:19:02 end-time equal 2014 /05/16@12:19:02 to [email protected]:/home/goran/kb1.csv Can't ...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

