Firewall not Import to Panorama

 Multiple Firewall are configure on Panorama. All the devices are successfully uploaded to Panorama. Now,I am making all the changes through Panorama to firewalls – which are being pushed to the firewall. But for one firewall,If made few changes to

Minemeld on AWS cloud

We are planning to install Minemeld on our AWS cloud using the cloud formation templates link provided in the Minemeld portal Homepage. But the  Install Minemeld links are outdated and it is not working. The AWS cloud formation templates are restrict

DNS Application uses more DP CPU utilization

Hi,

We are facing issue with DNS Application, it uses more DP CPU Utilization 60 to 70%.

We have done DNS Application override but no luck.

Please find the DNS Session details below.

Mem-Pool-Type MaxSz(KB) Threshold MinSz(KB) CurSz(B) Cur.Alloc Total

Clear text traffic to DLP

What do you guys do to send clear text or SSL decrypted traffic over to a nDLP for further action?  In my case, the nDLP only support ICAP in order for it to accept traffic from its peering devices. Since PAN doesn't support ICAP at all and I am in s

OSPF Area -> vritual Router > Hello Interval set to ZERO

Hello,

I would like to know if PAN OS supports FAST OSPF HELLOs (currently supported by all major network gear vendors, like Cisco, Juniper, etc) and, if yes, how could this feature be enabled / configured.

Moreover I was wondering how would the Virtu

Allow Box Enterprise without allowing Box Consumer

Box is getting blocked for employees.  However, more of our business partners are using Box Enterprise. 

We are using URL and application filtering.  Looking through the list of applications, I found boxnet-enterprise-access and added it to allowed a

Fighting the cli ... sigh - how to import a cert via the cli

Hi

So, silly me I manage my cert in panorama, so when my int CA for my management ports came up for renewal, i renewed, and pushed out to all the devices ... except for my panorama 

now I have cli access only.

I have found the location 

configure

panora

Vulnerability Protection Signature for CVE-2020-0688

Is there a signature yet for CVE-2020-0688?

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0688

Internal Gateway configuration problem

I'm using PA-3220 firewall.

Ethernet 1/1,1/2,1/3,1/4 is connected to main switch, Cisco AP, Internal router and server 10Gb switch.

I setup a GlobalProtect internal gateway for using User-ID and used vlan 1 (192.168.1.2) as the gateway and Portal's IP

Use Google Apps as User-ID Identity Source

Fellow Engineers -

Wondering if there is a way to integrate User-ID with Google Apps, such that a school that has deployed Chromebooks can use the students' existing Google login IDs to identify the users on the Chromebooks.  Does anyone know if this

Authentication Sequence not working

Hi All,

I have successfully tested Authentication policy using LDAP, MFA (Okta API), SAML and RADIUS (Okta). I am working on the redundancy scenarios wherein if Okta fails, the fallback would be LDAP. I am using RADIUS (Okta) and LDAP in the Authenti