External BGP Static Route Advertisement, with Path Monitoring an inside net

I have an existing LAN with two data centers. The firewalls at each are not in a cluster, and have different internal/external connections and tunnels, so changing to active/active it not possible. They each have separate DMZ's right now.
We need to b

Have you heard of the Cyber Elite?

In case you missed it, the LIVEcommunity team has just introduced the LIVEcommunity Cyber Elite program.

What is the Cyber Elite program you ask? 

This is a program that we have helped create to recognize the Expert members of the LIVEcommunity. 

HL7 Traffic / Unknown-TCP traffic gets denied.

We are standing up some new PA firewalls and have been testing with some HL7 servers.  Testing has been going well until recently where "unknown-tcp" traffic gets denied.  It seems that it only happens when the transfer of a specific file/message is

Scope of the licence pan 3220 is linked to the serial number ?

If I put a hard disk from a PAN3220 that failed, in a new PAN3220, what impact does the license have or is it only linked to the serial number of the Firewall

Primary and Secondary SSL VPN global protect

One question that comes in my mind, can we use fallback URL or IP in Global Protect client? Like in Cisco AnyConnect, if the primary VPN Server or internet source is down then client connect with the secondary internet source automatically.

Qos statistics tab does not show class for multicast traffic

I have a customer case where they have enabled QoS for layer 2 interface. There is a Qos rule in place for classifying multicast traffic as class 3.multicast traffic from zone LAN is hitting the right QoS policy and from the session details, I have v

Assigning a template to a specific vsys within a Template Stack?

Most of our FWs are multi-vsys.  Our stacks basically consist of one template - the entire FW config.   Now we are trying to create more global templates that we can apply to multiple Template Stacks.  But when creating a new template configs, the co

minemeld in kubernetes cluster

Hey Guys,

I am trying to setup minemeld in Kubernetes cluster and path "/mnt/nfs_share/minemeld-local" and  "/mnt/nfs_share/minemeld-logs" on NFS server. Below are the yaml file.. I am getting "Operation not permitted" error

Can someone help ???

Internet disconnects upon connecting Globalprotect

Got a new broadband and if i try to connect VPN using globalprotect, Internet is getting disconnected and im not able to browse anything. If VPN is doconnected , Internet is working fine without any issues

IKEv2 keepalive tuning

IKEv2 on PA has built in keepalive mechanism, but it can only act if the communication is lost for more than 5 minutes: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClgcCAC

After testing it out, about 7-8 minutes passed un