SFP Virtualwire on PA-820

Hi,

I configure my device to virtualwire mode with sfp baseT transceiver but it wan't to work (they are red in GUI).

When I change to Layer3 mode everything work corectly (change to green).

In CLI I can see transceiver.

Have you got similar problem or an

Firewall Reporting/Monitoring options vs native custom reports

Are the native or third party tools that users are using to generate custom reports beyond what the native custom reports can do?

Global Protect Access routes

Hi,

I have question for access routes. We have configured global protect and advertised only one access route however after connecting to global protect VPN, we can see multiple access routes in client machine. Is there any other criteria for access r

IPSEC VPN Phase 2 issue-Peer Checkpoint

I have 15 proxy-ids in the  vpn tunnel whose peer is checkpoint firewall. Just one out of 15 usually remains really busy and lot of traffic get encap/decap on it. Remote users accessing resources within other 14 proxy-ids have absolutely no issues bu

PANW-NGFW

Hello,

Does PANW-NGFW support invalid link notification for SFP?

PANORAMA COMMIT AND PUSH TO FIREWALL FAILS WITH ERROR

For the last few days, we have been trying to import firewalls into Panorama and have not been successful at it.

Panorama firmware is 9.0.7

Palo Alto firmware: 8.1.13

Description of issue: During the importing process, I was able to extract the config

Captive Portal SSO w/ Okta - "User Authenticated"

We've implemented Okta SAML SSO with our layer-3 Captive Portal redirect page for IP-User mapping. The solution works, but users are landing on a "User Authenticated" web page, rather than the website they originally browsed to. Users now have to re-

Firewall active sessions age

Does PAN OS has a feature to calculate session age for any active session  ? In particular looking from SOC point of view if they want to monitor long time period active sessions used by attackers to compromise security. 

I am not looking for session

split tunnel or tunnel all

Hi,

Which one is best split tunnel or tunnel all , If tunnel all how to do in PA .

What are the pros and cons 

Thanks

Paloalto NGFW file system integrity check??

hi

this is jo. from S.Korea

case(PA-3060 / PAN-OS 8.0.7)
customer want to check
'file system integrity check' when it occur.(monitor->system log)
when the integrity log occur want to send to Syslogserver.

test.
I`d reboot Pa-220 and checked system log how

HTTP response code logging

So PAN doesn't log HTTP response code, at least I do not seem to find one under URL Filtering logs, and if it doesn't, then how Palo could claim that it is the replacement of proxy?

Fireeye iSight

anyone has configured FireEye iSight miner using API? if so, could you please share? 

How to Setup Response Pages in using javascript and ajax for Service-Now

I'm trying to setup PaloAlto response pages to submit content using "button" to Service-Now.  It seems that in order for content of response page to be 'sent' to Service-Now, javascript and ajax must both be used in the html response page.  My questi