Query regarding upgrade Path to 8.1.21-h1

I have a PA-500 device running on 8.1.20 currently .

From this version can we jump directly to 8.1.21-h1 Or we need to go via intermediate path ?(8.1.20 >8.1.21>8.1.21-h1)

Also not able to see any Palo Alto reference article about upgrade path , Is it

Blank Setup page after downgrade from 10.0 to 9.1

Hi there,

Using a VM-50 that has been running fine on 10.0.2 until there was a need to downgrade the VM.

After taking backups then downgrading to the 9.1 feature release, the Setup page in the UI is now blank.

I have tried upgrading/downgrading to vari

firewall is preferring a higher cost route even though its learning lower cost route with same type in ospf.

Global Protect AutoVPN and Windows 10 Login Screen

When I login to my laptop computer - underneath my user name for sign in  SOMETIMES is the status

message: GlobalProtect Status: Connected (and under it the name of the GP portal/gateway.)

But at other times I see no such message or "sign in options".

QoS profile Bandwith vs Percentage

Hello All,

Recently I wanted to create a QoS profile for subinterfaces on AE interface based on percentage rather fixed throughput. That's why I have 2 profiles - one is throughput based and another one is bandiwth-based:

Funny thing is, I can apply

User-ID agent

We have User-ID agent installed on windows VM server. We want to increas the RAM on this VM to improve the performance. If I shutdown this VM, what will be the impact on user authentication during VM remain shut down? Please refer me to some KB so th

Getting Low Speed

Guys,

My Lan users are getting a slow downloading speed. I have checked the ISP cable directly and there I am getting the accurate speed which is 30Mbps. But when I am connecting the ISP cable to Paloalto after that I am running the speed test it's g

IPSec tunnel to Azure - Strange issue

HI all,

I have an active ticket with PA but struggling to get through to anyone atm. We have recently made some routing changes and moved the Azure IPSec tunnel from an SRX to a PA. The tunnel came up fine but we are having a weird issue with RDP. It

wrong user-id mapping

 Hello everybody,

We have a problem with a user to IP mapping.  Doesn't matter which version of PanOS - 7 or 8, doesn't matter if it's using windows agent or direct access from paloalto to LDAP servers. 

   Let's say a user is going to some server, win

Panorama rest-api edit security policy post rule - 400 Unexpected here

Hi!

I'm writing a python script to change the security profile for any security policy rule that is using that profile (very tedious to manually click through hundreds of policys via GUI). Panorama rest-api is always throwing a 400 response to me:

URL

L3Svr Restarting automatically

Hi Team,

The l3svc process is restarting automatically whenever we are doing an commit on the firewall.

This is sometime causing captive portal to not work correctly.

Is this an bug. We are having PAN-OS 9.1.10 currently installed on the firewall and