Firewall idmgr High Availability State Showing difference

I have configure a RMA replacement HA device by following below guide

How to Configure a High Availability Replacement Device - Knowledge Base - Palo Alto Networks

I follow until step 10 need to use below command to check the state

Migration / Import of configuration only to a destination vsys, a particular vsys

Migration / Import of configuration only to a destination Vsys, a particular vsys.

Hello good afternoon, as always thank you very much for the support and collaboration as always. Please your your suggestions, advice and / or guidance, how is it po

PAN platnium support

I have Platnium support with PAN and I opened a TAC case yesterday evening explicitly requesting TAC support Monday-Friday between 8am-5pm US EST.  The case went to APAC TAC and he said that he is looking into the issue.  I sent me an email to tell h

Split Tunneling Teams traffic - Video ONLY

I know we can split tunnel Teams traffic, but is it possible to drill down further and split the Video calls ONLY and keep regular traffic within teams to go over the VPN ?

Multiple unexpected failovers - need help understanding FW behavior

Hi all,

We have two PA-3220 devices configured in Active-Passive mode (no preemption). Firmware version is 10.1.2. In the last three weeks we had three failover incidents that we are investigating (no device reboots though). We've opened a support

Please help with log collectors and collector groups in Panorama mode!

Hello all! 

We have had a single Panorama appliance running in Panorama mode as a local log collector in its own collector group. Firewall logs are sent to Panorama, and all is working well.

We now have procured a second Panorama appliance for HA.

ECMP Virtual Router restart question

Very quick question.  We have set up another virtual router (currently running two with active users) and are trying to enable ECMP on the new virtual router.

When we attempt to enable ECMP, a firewall message states that 'Enabling/Disabling ECMP a

What exactly is the naming convention for Prisma Access?

We have Prisma Access ( Panorama Managed ) in our environment. Example of one of the compute locations is named as "europe-central-cranberry". Is this an SPN? And after certain bandwidth will be get a new SPN in europe central like "europe-central-xx

FIPS-CC Security Functions- can you trust PAN documentation?

According to PAN documentation: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/certifications/fips-cc-security-functions

MS-CHAPv2 is not compatible with FIPS-CC mode. It is recommended to use RADIUS with TLS.

However, in my test with

How to contact an Account Manager to discuss Partner Status.

Good day,

Please will someone from Palo Alto contact me with regard to my company's partnership?

I am unable to find the partner information in order to align our certification efforts with Palo requirements

Many thanks

Linda

Wrong interface name on PA-410 stencils

Hi all,

I'm in the process of rolling out several PA-410 to a customers locations. I am creating detailed documentation, since there is a third party that will do the physical install.

In the process I found Visio stencils here: https://www.paloalton