GRE Tunnel Policies

Hi,

I'm creating tunnels from my Palo Alto Firewall to Zscaler and have been trying to ping Zscaler's Global IP. What sort of policies are needed to allow traffic to pass into GRE Tunnels? (and/or NAT, Policy based forwarding)

Thanks!

No data in Custom reports

Hello,

I'm using verson 8.1.7 (upgradede last week) in Panorama and firewalls 7050.

I have defined custom reports added to report groups nad this report groups defined in Email scheduler to send it every Monday.

If I do "Run now" in the custom report a

how does two or more snmp communities?

Two snmp community values need to be set, but only one community value is included.

Can I put only one community in the SNMP Community String?

If anyone knows, please share the contents.

ipsec phase 1 time out

Hi,Bro

Is there anyway to make ipsec phase 1 keepalive  and not depending on interest traffic ?

Device Telemetry Upload failed reason Server not reachable.

Hi,

In our firewall the device telemetry upload is getting failed, the reason showing is server not reachable. 

But there is no traffic logs for the application "paloalto-device-telemetry". But the dynamic updates are working fine, 

The model : PA-85

Traffic logging issue from firewall to Panorama

Log-collector status show as active and connected. Checked the logging status and based on the time stamp, observed that log creating and log forwarding are stopped. So panorama is not showing a logs for pair of PA-850 firewalls.

We have tried restar

Global protect gateway disconnect

hello Everyone, 

I am having client who is trying to connect the laptop from office system. VPN is on the laptop, and he can see the file and stuff , but when he is accessing through remote desktop connection to laptop. when it login , Screen lock it

Honey pot recommendation for DNS sink holing

Dear all,

we are seeing many DNS alerts for spyware, but we don't have any DNS logs.

Also, internal hosts can't resolve external FQDNs, so probably most of the requests are coming from the proxy.

So we are thinking about setting up DNS sink holing with

BGP on two virtual routers on same firewall?

Hi all,

We have two HA pairs of Palo's BGP across two diverse datacentres BGP peering with 3rd parties using our private AS numbers. We now have a new 3rd party who require us to use a registered AS number. I am told that Palo doesn't have the abilit

Help infinite loop in 10.1.5

Hi, we are using VM series and I just updated it to 10.1.5. When I want to use "help" (question mark) it loads up new tab in web browser and it goes into infinite loop of redirects. Page never loads up.
It happens on any question mark in any menu (as

Temperature to monitor for Palo Alto devices ?

Hello

I saw there is a operating temp for Palo Alto devices but what about incoming, outgoing, switch and management ports?

These all can be read by SNMP.

Is there a article that details what should be the limits? Its to adjust it for a monitoring s

Can I export traffic log more than 1 million lines in panorama

for example, i want to export all traffic log geq 1 million lines.