Peer ip is not showing in high availability status

We are not able to access passive firewall on web gui and ssh.

HA1 is configured on Dedicated interface.

In high availability status , peer ip is not showing. What could be the reason.

Revert Pan local interface object back to Panorama

Hi All,

I follow this KB by remove static route to particular interface from virtual router  but 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLIxCAO

I face another issue is the set vsys vsys3import network interface [ ae

PAN-GPS POWER SHELL

Hello,

I have the below query, can someone explain this.

While reviewing PowerShell command execution we encountered a scenario where PANGPS.exe file in the program files Palo alto installation folder was generating PowerShell commands. i want to under

Unable to block https from untrust zone

Hi guys,

I have a query were im not able to block https traffic for a specific domains subdomain to be blocked. Where i have created a url catagory and mapped it with url filtering and called that in a security policy.

But as i see that the http is ge

Autofocus and minemeld

Minemeld

Hello, I don't really understand the notion of minors with Minemeld. Can you explain this diagram to me please? THANK YOU

High Availability

The Palo Alto instructions to set up High Availability are fairly straightforward, but the devices upstream and downstream barely get a mention. In our case, downstream we have two Cisco switches and multiple VMs attached. Upstream are two Cisco swit

EDL object not showing up on dropdown list in policy rule

Hi,

PAN version 9.1.0, no Panorama.

I created two EDL - one of type IP List and one of type Domain List.

Both EDL point to an internal webserver which holds the lists.

Both EDL pass the "Test Source URL" check.

The IP list works fine, we put it an a poli

BGP Configuration Help

Hi

I am not a network engineer by no means and have setup basic BGP in the past with various peers with the peers being the source of truth for all routes.

I have a situation were our primary firewall has been using static routes for everything, defaul

what is the meaning of "tcp client reset via TCP responding rst" output in global counter

We are not able to connect VPN hosted in vpn_dmz zone.

We have deployed third party vpn in vpn_dmz zone and configured inbound nat for same.

Its old setup , all of sudden we are unable to connect vpn intermittently.

did pcap for vpn public ip , showing

Advice on using MFA between Duo vs. Azure MFA vs. Okta

Anyone setup MFA on Global using Duo, Azure or Okta?

Just looking for a pro/con list concerning the following items:

• ease of setup/config
• cost per user
• ease for end users
• any other concerns

Palo Alto Networks Announces Prisma Access 2.0

Palo Alto Networks announces Prisma Access 2.0, expanding the industry’s most complete cloud-delivered security platform.

Prisma Access is the only solution that protects all apps with best-in-class security while delivering an exceptional user exp