Configuration Sync is not happening on HA,Server error : Failed to synchronize running configuration

Running configuration  sync is not happening between HA peers(PA-5050). We tried manually from Passive firewall CLI by the command request high-availability sync-to-remote running-config but I are getting the error Server error: Failed to synchronize

Destination NAT Mismatch error

Hi I'm configuring a new PA-500 and have it working for source NAT going from Tusted to Internet. Now I want to create a destination NAT rule to allow traffic in to a web server located on the trusted net. I have created a rule almost exactly as it s

Issues with pushing out 10.2.9-h1

There is not a community discussion for issues implementing 10.2.9-h1

We have a maintenance window to push out 10.2.9-h1 Thursday evening and with recent issues with 1.2.7.h3 and other roll outs i am starting this thread for the community.

MLAV cloud error, all machine Learning engines stopped

Received this high-alert message on a PA5220 (10.0.8-h4) this morning, "MLAV cloud error, all machine Learning engines stopped". Has anyone else received this message before? If so, what steps should I take to troubleshoot and resolve the message? Th

GlobalProtect Gateway with Multiple Client Authentication Config

Hi there,

I have multiple client authentication configurations set up on my GlobalProtect portal which use the same OS type.

Order is as follows:

1 - Windows OS with local auth on the firewall.

2 - Windows OS with LDAP auth.

What i want to achieve is i

Palo Alto Offering for non profits

Hi, I am curious why palo alto networks does not have a "security for good program" or donation program for non profits?

Palo Alto is a large company and I think it would be an awesome move for them. 

Some of the companies that have one are

Cisco and

Can't push after adding a new subinterface to newly created vsys

Hi folks,

I newly created a new vsys for my ha-pair in my panorama. I have also created a new device-group but only use a single template for both vsys.

I've tried to create a new subinterface in my new vsys. The interface is already connected to m

moving palo alto firewall management to a different domain

We have a domain that is going out of commission, so I need to move the palo alto firewall management software to a different domain. Is there a safe way of doing this? 

RMA

Good morning, I hope you can support me, do you know how long it takes for an RMA team to arrive, with a premium license?

Cortex XDR Notifications

Hello community:

I have some doubts about Cortex XDR notifications. Currently, I have an alert set up to send me an email every time a device has the sub-type = Fully protected. My intention is to receive an email every time Cortex is installed on an

GUI for Terminal Server Agent blank

I have just started installing the Terminal server agent, version 11.0.1-104. The program installs correctly and no errors, but when i start it, and choose configure (or any other menu option) the program windows just remains blank.

I can see the m

Firewall not Forwarding logs to Log Collector

Hi,

I need help for this. Logs not forward to panorama. Can see logs collector connected but still not forward the logs as below

> show log-collector preference-list

Log Collector Preference List

Forward to all: No

Serial Number: XXX IP Address: 100