Tags not applying but can see them inside the security policy

running 10.0.2. superuser can create the tag, apply it.

but the tag is not visible in security policy "tag" column.

can open the security policy and "see" the tag.

User is superuser, dynamic.

ConnectWise Control connection getting reset

Latest spyware signatures appear to be blocking legitimate connections to ConnectWise control. The 5/2 AppThreat-8564-7375 update categorizes the connection/file (GetSessionDetails) as threat Generic PHP Webshell File Detection.

Produces "unknown erro

WAN Interface IP change - after Wildix phones still work, Yealink phones don't!

Hi all,  looking for advice following what is in my opinion  very  unusual behavior. 

Where I work for, we have a PA220 running Firmware version 9.0.3  that is used  as the firewall for VoIP traffic for physical desk phones. We have two brands of IP

DLP product that will integrate with PA decryption broker?

All the DLP products I have researched require ICAP capability which the PA doesn't support.  Does anyone know of a DLP product (network appliance or VM not client based) that will actually work with the decryption broker solution?

Please don't sugge

Bypass Telegram App traffic for ssl decryption

Hi,

Is there any way to bypass the Telegram app traffic for SSLdecrypt? any idea?

Traffic Logs show 2 different source users from same IP

We are using User Identification and have the user-id agent running on 2 different AD servers.  Also using global protect.  When looking at traffic logs I can filter on my GlobalProtect VPN IP, I can see the source user of my user account, and a sour

If untrust interface fails on firewall, Then on other leg trust interface should go down....

Team,

Any idea on belows, Pls share.

How to make firewall trust interface down if untrust fails on Active/Active setup in PA firewalls.

Don't want to manually make it down. Facing challenges in Azure VM Active/Active firewall.

failover between sites

Hi,

Hi ,

I have two sites , between sites layer 3 connection is there .single firewall deployed in each site .Now I want to  make active standby with these firewalls .

How can I do that , does it work without any problem ?

What need to be dome to make

HA - Path Monitoring

Hello, good afternoon everyone, thank you very much for your support and help.

I have the following scenario:

A pair of firewalls configured in HA, such as Active Passive, model 5250.
There are currently 2 links to the Internet, the main link, that is

Change IP MGT Firewall conect to Panorama

Hello, good afternoon everyone, thank you very much for your time, help and support.

I have the following scenario:

1.- Panorama managing 6 firewalls
2.- Panorama version 9.1.6
3.- Firewall HA 9.1.6 (5250 - This will be used for configuration migration

VPN Site to Site configuration between two PAs

Hi,

I've been trying to get clients on the end of two different Palo Altos to be able to ping each other. Everything is green but the IPsec Tunnel doesnt seem to be working. Using tracert, traffic from a client first hops to the LAN Port and then to t

Doubt regarding fullbackups firewalls managed from PANORAMA

Hello friends, good evening. I am new to administering Panorama and therefore firewalls through the Panorama console and I have some doubts, mainly with backups, which I hope you can help and support me.

Understanding that example I have a firewall m