Palo Alto IPV6 configuration for firewalls running in active-active HA

Hello All,

We have a customer planning to enable IPV6 firewalling in their current  data center firewalls. The firewalls are currently running in active-active HA mode. I have the below queries.

1. When I configure IPV6 address on the interfaces, is

antivirus not able to update

we have recently renew our license of thread prevention . As application and threats are update but the antivirus is not update from Palo alto server. We  downloads the AV from support portal and manually install in FW  and run this command still ant

Properly routing IPv6 across site-to-site IPSEC tunnel

Configuration:

I have two /56 IPv6 prefixes, one which is used in our Bay Area office, and one which is unused. I have taken a /64 from the unused /56 prefix and assigned it for use by our office in The Netherlands. They will use DHCP to assign the a

GlobalProtect unattended uninstall when "Allow uninstall with password" is set

Hello everyone,

I am fairly new to PaloAlto and currently we try to package the GlobalProtect App for Software Deployment

Documentation on installation was found ad https://docs.paloaltonetworks.com/content/techdocs/en_US/globalprotect/10-0/globalprote

URL with port

Hi, 

Wondering if someone can help me out. I've done some searching and have not come up with with much

I have a user who needs to access a few webpages on a custom port. The link for example is something like: https://custom1.config.fake:2546/info bu

Re: Welcome to LIVEcommunity! Start Here.

Can someone help me? How we can know if HP brand SFP is compatible with PA-3220 firewall

JD094B     Single Mode HP 10G_BASE_LR_SFP    

JD092B     HP Multimode 10G SFP+ LC   SR Transceiver

Adding URLs to an allow category caused some connections to be blocked

We added additional URLs to an existing custom url category and on our URL filtering profile, it is set to alert. These additional URLs are completely unrelated to the connection that started to fail. And as soon as we reverted those changes things b

User-ID - one user occasionally not hitting the user based policy

PAN-OS 8.1.2, User-ID configured with Windows AD single domain. There are security rules built, based on users/user groups. It is mostly working as intended, but specifically there's [at least] one user that has a different behavior - some user-based

need to block .lockbit extension

as per RBI guideline ,one of our customer from banking sector wants to block .lockbit  file type extension,but in firewall i didn't found any such extension.

Issue with the vulnerability logs.

We have noticed some vulnerability logs in our PA for the Telerik application in our environment.

the threat vault id is 59014 but according to the link. https://threatvault.paloaltonetworks.com/?query=59014).

 https://www.telerik.com/support/kb/aspne

Include/Exclude subnetworks for user mapping

Hi,

Just want to know, what is the exact role of include/exclude subnetworks in Palo Alto user mapping & how it will work on back end.

How do I select an asset when filing a support case?

Hi, 

Weird question, but I'm trying to make a support case for a firewall, and I'm on Step 4, where it's asking me to "Please select the asset for which you are filing the case." No matter where I click in the table, there doesn't appear to be any way