Firewall slowness

Hello,

I am facing an issue with my firewall. it is very slow in the GUI as well as CLI. if i click any tab in the firewall it is taking too much time to refresh and loading the page.

firewall model - PA-500

PAN-OS version - 8.1.15

below i check from

Taking longer time to commit on firewall from secondary panorama

• As observed, when primary panorama was active, I have created an Test address object and committed and pushed from panorama. Configuration committed and pushed within 2 to 3 minutes.
• After making secondary panorama as an active, configuration was comm

What Are The Reasons Why We Still Can't Remove the vWire via Panorama On A New Firewall

Hi guys,

What is the reason?

A brand new firewall from the factory, we give it a management ip-address and panorama server address, we import the firewall config to Panorama and commit to Panorama.

We then change the network and device templates so t

number-of-severity in threat log

Hi Community,

I am trying to parse the threat log from Palo alto. I can see the 'number-of-severity' in the custom Syslog log format. I am looking for an official document to map these numbers to the severity level.

I can see the below,

4- indicate hig

aws Panorama mode cant see the HA available to add to the log collector gr

Two aws Pano's in Panorama mode. 

Primary(active) Panorama doesn't see the collector that is the Secondary/Passive Panorama as being available to add to the collector group. Drop down is blank.

Walk through the same steps on the Secondary/Passive nod

API to dynamically register and tag from Panorama to Firewall

I'm finding we can use the api to register IPs to Tags on panorama no problem.   I can view that they are registered on Panorama.   However, Panorama is not pushing these mappings to the managed firewalls.   I'm matching on name and I'm using the dyn

Dynamic user group using HIP log

Hi Team,

Just need to check if anybody faced the below issue in PanOS 10.0.x

I am trying to create a dynamic user group with HIP log by following settings,

1- created one Tag

2- Configured log settings for HIP log for build in action tagging the source

Inbound TLS/SMTP inspection (to FortiMail)

Hi,

I'm wondering if anyone happens to be doing successful inbound inspection of SMTP/TLS to a FortiMail appliance? Or any other mail server for that matter.  I've run in to a brick wall when it comes to renegotiation. The Palo is serving the correct

How does Validate Commit function work in PAN OS 9.0.9?

 I'm wondering if the validation process is checking the change against the running config and not taking into account the Interface IP change in the candidate config while doing the validation.

I am trying to make a change to both the IP address of

Configuring decryption, some gray categories and experiences

So I guess I'm just curious what the overall opinion of multiple people is regarding decryption and how well they take into account local laws, etc.
I get decrypting traffic can be a major step up in security and basically unlocks a lot of potential i

Local Checks Not Enabled (info)

As per VAPT done at our firewall found below vulnerability   :

Please suggest any solution   

=====================================================================================

Local Checks Not Enabled (info)

Local checks were not enabled.

Scanner did

how to block malicious Attack on server

Hi All,

Good day!

I'm trying to block malicious attack on our server but no luck. Please see below attack i encountered on server.

I've already create a policy for that attacked. I already set security profile for that specific servers.

Also i already