NAT/PBF behaviour

Hi,

I am having some trouble successfully creating a NAT/PBF combination. Long story short...:

We have an office with two WAN switches that have IP addresses in the same range as that office LAN WiFi IP range. Thus if anyone in the office or on their

Site-to-Site Palo Alto VPN is Failing

I apologize if this is posted in the wrong message board. It is unclear to me where I should specifically be asking this type of question. 

I configured a site-to-site IPSec VPN between two Palo Alto's and they are both failing on Phase 1 and Phase 2

Internet not working

Hi Guys,
So we were using a router with two VLAN 10 and 20, connected to two different APs and everything was working fine.

Today we purchased a firewall and we placed it before the router (refer to the image). I created two static routes 192.168.110.0

"Error in getting config lock"

Hi, 

 We encountered an error "Error in getting config lock"  on the web gui and an error "Server error: Error in getting config lock" when we tried to run commands on the CLI. This issue has been resolved by the TAC with the help of the root engin

Tech Support Files Fail to download for VM firewalls - Over 1Gb in size

Hi All,

I have 7 VM series firewalls including 4 in Azure. They are all running 10.1.4h4 and I notice they all fail to download tech support files. The tech support file are all listed at over 1Gb

GUI – Fails to download if over 1Gb. When downloading

SNMP Trap test

Hi

i need to do the SNMP Trap test from the FW's. Mainly i am looking for HW's related issues. Is there a way we can manually generate the trap and test. I am looking for these, and if any new Traps are there in recent days pls share it.

panROUTINGRout

I'm curious what content is included in the PaloAlto config file.

Hello
Customers want to know what is contained in the paloalto config file (web - device - setup - operation).

Customers wonder if the config file includes security rules, nat rules, routing information, and updates (such as Pan-os or app&threat conte

PA-3020 Dataplane 100%

We have aggregated ports for the PA to "handle" what Consolidated has for us on a 2GB circuit.  Is this a case where our 3020 can't handle the traffic we have or is excessive logging a more likely culprit.  GoldSeal has our support and the need for i

Mnonitor SNMP % packet buffer congestion

Hi,

Is possible to monitor by SNMP the value for the % packet buffer congestion? i can not find this in PA MIB.

thanks

Decrypting WhatsApp traffic and blocking file uploads possible?

Hi,

So we want to block file uploads on WhatsApp but since it's encrypted, I doubt this can be done, however, can PANOS decrypt WhatsApp??

I ask because WhatsApp doesn't exactly use SSL right, it's more of a PGP sort of encryption, can we decrypt tha

HA mistake after update to 10.2

FW1 10.1.4 è Download 10.2 and synch to FW2

Download OK Sync OK

Setup 10.2 on FW1 and reboot ==> FW2 begin Master.

Check FW1 reboot OK 10.2 online OK.

FW1 ==> Master

Setup 10.2 on FW2

Reboot ==> Lost access on management interface.

• Disconnect Wan int