PA-3020 - Error: Threat database handler failed - Commit failed

Hi,

Our Palo Alto has been rock solid for years, but last friday we realized we are unable to commit changes. 

We're pretty sure it started happening with the release of content package version 8462-6955. 

We hoped this was a one-off and the next upgr

One IPSec SA Stops Passing Traffic

I have a B2B tunnel with a business partner.  There are 22 proxies, all defined host-to-host.  The VPN peer is a Cisco firewall, I'm not sure of the model.  Phase 2 lifetime is 8 hours.  One particular SA stops sending and receiving traffic at each P

Want to allow only gmail and block all other internet access with Palo alto firewall

Hello,

I want a suggestion regarding my scenario. I want to allow my employees full Gmail access(i.e they can receive sent email, attach file to email, download attachment etc) but all other internet access will be blocked. they wont be able to use

error while generating PDF from ACC tab in PA3230

prior to few days ahead we were able to download PDF report from ACC tab in Palo Alto but as of now while downloading the report, i can't download the PDF, it gets stuck.

PA500 boot error with message "unable to connect to Sysd" and NIC in dataplane does not worked.

The firwall PA500 had a poweroff and boot,and after reboot the PA500 get a error with "Error: sysd_construct_sync_importer(sysd_sync.c:328): sysd_sync_register() failed: (146) Unknown error code
Error: unable to connect to Sysd"

When the device boot fi

Impact on disk Usage for firmware upgrade

one of my customer has 95% root storage if we upgrade the PANOS 9.0.9 H1 to 9.1.11

Is there any impact on the disk usage of root storage?

X-VPN not getting decrypted

Hello,

We would like to block the application X-VPN (used on apple iOS system as a VPN app). Using PAN-OS 8.0.1
The firewall sees the traffic as either SSL, web-browsing or google base traffic and doesn’t appear to be decrypting it.

The session ID says

Inline ML always shows "unknown"

I'm trying to figure out if the "Inline ML" feature is working. A quick search of my logs for "dynamic-classification-verdict neq unknown" returns zero results. I found a support article with a sample file, but it says I have to host it on my own web

Review Policy (in Application and Threats last update) is performed in Control Plane or in Data Plane?

Review Policy (available in Application and Threats last update) is an operation that is performed in Control Plane or in Data Plane?

Block from old Browser Version

Hi Community,

I work to create a role that should block old browser versions. But I have not found out this special point how you can say from a certain version that these are blocked and only allowed from the safe status.

Is there a solution?

Palo Alto threat Protection License Expire

if threat protection license expire .Will it impact on traffic policy ,means does traffic stop .what is the possible behavior or firewall will be when license expires .