Best practices health treshold palo alto

We need to know a threshold to determine whether the CPU memory and Palo Alto dataplane are normal, warning, or critical.

Does Palo Alto itself have a predetermined threshold?

#threshold

#850

#panorama #m200

#800series

High Usage of Root Partition in PA-220 After upgradre to 10.1 version

Hi Team,

After upgradation of PAN-OS 10.1.x version we are facing High Root Partition issue in our firewall. 

Even after manually clean the logs after 5 days it is back to high, Is there any particular reason the partition usage is high ?

expedition export ASA objects and object groups to CSV

I see Expedition is a tool used to import ASA config file and export to PAN for migrations.  For those who have it already installed, is there a way to export ASA configs, specifically objects and object-groups, to CSV?

what is the PaloAlto equivalent of Cisco's Auto-RP feature?

I am trying to configure multicast but it only works with auto-rp feature. I am wondering the equivalent terms and configurations in Palo's world. has anyone configured it? If so, please provide me your inputs.

Thanks.

HA and LSVPN in 10.1

Back in 9.x we feel like the HA peers had no trouble passing LSVPN from active to passive when an HA failover event occurred.

Now in 10.1 we're seeing about half of our sites fail to bring up the tunnels when HA moves from active to passive.

I've bee

System halts after login - using PA-VM v 10.0.6 eval hosted on ESXi 5.5

I have installed the VM and on boot up I can log in with the default user/password admin/admin but my system then crashes shortly after that.

I unchecked time sync

Global Protect - "A valid client certificate is required for authentication" but works correctly for X days after PA restart

Hi all,

Just putting this out there to see if anybody else has had similar issues.  If you have, I would really appreciate you letting me know please!

Palo Alto PA-820 - HA (active/passive) - PanOS 9.1.5

For several months we have had intermitt

Palo Alto PA5220 is not login after password complexity changes

We changed the password complexity and history settings on our firewall a couple of days ago.
After committing the changes the local users are not able to login on the firewall.
So we tried to boot into maintenance mode by connecting through a console

MacBook Air M1 connection problem

After my computer upgraded to VENTURA 13, I cannot connect remotely. It constantly says "STİLL WORKING". There is no lock status in the privacy and security settings, as in previous versions. This is hindering my work. You are welcome please help.

IKE protocol notification message received: INVALID-SPI (11).

Dears,

I have a site to site VPN between PAN 7.1.6 and Cisco ASA 8.2.5, I'm receiving a lot of Invalid SPI error. I tried to reset the VPN many times and still having the same issue. This issue by the way is casusing a lot of packet dropes in the VPN

Palo Alto Customer Support is a joke

Been on hold for serveral hours, only to to be told there are no support engineers available ATM!!!

Machine Learning engine for Phishing stopped, please update your content

Hello.

From yesterday(26.05.2021) in two independent environments on the firewall I can see messages: "Machine Learning engine for Phishing stopped, please update your content".

Does anyone have a similar problem and know how to fix it?

Regards!

RMA

Hi I can see that mi shipping information in my case 02366569 for the RMA, the web didn´t save well the shipping information, I wrote a post on the case, with the address correct, Do you know if it is enough or I must do something more?, please. Than