PA-200 License is not expired PAN-OS 8.1.23 rebooting randomly on its own very intermittently.
Hi, I have two inside aggregate ports eth1/3 and eth1/4. These will be uplinking to Cisco Nexus core switches. How can I tag multiple vlans within these ports and what interface type should the ae1 be? Thanks
We have 2 PA 3260 across Data Centres.We tried to use Eth1/13 as HA1 port but under ha1 interfaces it does not show option to choose eth1/13. IS this by design that HA1 interface to be dedicated?for now we used management as ha1 interface. is this good to use management interface as ha1? RegardsMike
is there another way to add a second portal address to GlobalProtect (v5.2.12-26) on Mac, as I do not want to use a plist to add a second portal address to GlobalProtect.I want to be able to add the portal address via GlobalProtect?
To configure security policies associated with dynamic address groups: Select Palo Alto Networks > Policies > Security. Click Add to create a new security policy rule. 3.In the User tab, enable known-user. Configure the other options to meet your security requirements. Click Commit to complete the configuration.
Hi, I am trying to use Salt to automate a config upload process. The problem is that the salt module for palo alto, called panos, needs access to the firewall on tcp443. "The panos proxy leverages the XML API functionality on the Palo Alto firewall. The Salt proxy must have access to the Palo Alto firewall on HTTPS (tcp/443)." from salt.proxy.pa...
Hello team, The problem we are observing is that when devices switch from a corporate internal network to Global Protect and vice versa they do not update their reverse DNS record with the new IP received; it is clear that it is a problem between the devices and the DNS, but we wanted to know if from the firewall there is any configuration opt...
I'm experiencing issues of what seems to be a "sudden restart" of all OSPF/OSPFv3 neighborship on a PA-5220/PanOS 10.1.6 firewall. I'm trying to pinpoint the root problem on my own, since our support contact (a partner, not PA's support) is taking the route that the problem is on OSPF neighbors' side, which is unlikely to be true, since it would...
Hello, I am trying to setup a PA 220 from home. I have a BT connection but am using a TP link archer wifi hub I followed the instructions but didnt get a connection https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFkCAK any advice is welcome Please note you are posting a public message where community members a...
Hi, I want to define separate profiles for upload and download for sub-interface, I couldn't succeed, can you help with the issue? (ip subnets and zone is correct) if the TEST_DOWLOAND RULE is top it working for dowloand qos but not working UPLOAD qos rule. if the TEST_UPLOAD RULE is top it working for UPLOADqos but not working DOWLOAN...
Hello, I am used to configuring clusters on PanOs 8.x and 9.x. I am now configuring a new infrastructure based on PanOs 10.1.8. I have seen new options in "High Availability".1) Under "General" tab what is "Clustering settings" for?2) what is "Cluster Config" for? Thanks
With the new feature - Advanced Threat Prevention in PAN-OS 10.2 There are Inline Cloud Analysis in PAN-OS 10.2I found a new setup - Threat Prevention Inline Cloud Analysis under Device > Setup > Content-ID I would like to know what is the different with enable or not on "Allow on Max Latency".Is it means that exceed the Latency of Inline ...
Hi All,I executed the command in SNMP to get MIB, but it is showing only interfaces not showing related IP addresses. what might be the problem ? Kindly help me.Regards,Gururaj.
Issues with Members in a group and a security policy - pa 850/9.15 os level - I use ldap to sync with AD , I merged the groups I need in the include group option - I see all the groups in cli by using show groups - I can also list members in the group from cli , - I use Kerbose to sycn user id's and they also show up in the userid /monitor.. ...
I have a weird problem. I installed a VM100 connected via PPPoE to the ISP, standard NAT, DHCP configured on the LAN side. Issue: unable to receive/send emails from iPhone from SOME providers using inherid IOS app:Corporate email: working via IOS email appiCloud email: not working via IOS email appGmail email: not working via IOS email app, but ...
