General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics


Join Us for a Tech Deep Dive Miniseries!


Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.


Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real


jforsythe by Community Team Member
  • 3 replies

Session Ownership in Active/Active HA scenario

Hi There,


I will be greatful if anyone can please help me to understand the below which is taken from



"You configure the session owner of sessions to be

Resolved! HA link port failures and failover

I have a pair of 5220s configured with HA1, HA1 Backup, HA2,  and HA2 Backup links in use.  All HA links show to be up and running. I have left all of the other knobs for tuning link and path monitoring off, taking all of the defaults. No preemption,


Global Protect client for linux

Hey all,

I've just updated the global protect version to 4.1.8

In the docs, it says that the client supports linux.

I've followed that doc:


MPI-AE by L4 Transporter
  • 9 replies

Resolved! PA 3050 PAN-OS Upgrade Path

I am currently looking to upgrade my HA pair of 3050s from 7.1.10 to 8.1.6 and per Palo Alto's best practices guide, it is recommended to upgrade to the latest maintenance release prior going to the next major one. As it stands per that best practice


PAN OS 8.1.5 - Thoughts?

Hi there! Has anybody had the chance to play with PAN OS 8.1.5 yet in Production? Are there any noticable issues? I've been locked into this killchain of bugs ever since we made the leap to 8.1.0, and I'm just wondering if this build will be the "sta


Fr4nk4 by L2 Linker
  • 18 replies

Resolved! Unallowed to apply NAT rule



I'm trying to configure double NAT rule (SNAT + DNAT) using Panorama 8.1.4 managing PA 5220 devices running PanOS 8.0.14.


I can valid / commit configuration on Panorama, but when pushing config to devices I get following error message :


  • vsys -

Resolved! Export Qos Interface Statistics

Hi just wandering if you can export QOS interface statistics once you have configured your specific interface profiles..  You can view these statistics in realtime but l can only seem to export to PDF/CSV the configuration ?  Unless there is another


acmi by L1 Bithead
  • 2 replies

Resolved! Security Policy Best Practice

Hello all,

I've read multiple documents from PA and read some on the forums here, but cannot find anything definitive on this.


What I'm trying to find out is what is the best practice/most effective way to configure a Security Policy for filtering. I


GCSS-RT by L2 Linker
  • 2 replies

CheckPoint / Migration Tool / Panorama

I have been through the process of getting the files from CheckPoint, going through the migration tool to eliminate unused address, services, etc.  I have completed the merge, generated the XML & SET files.


I want to get these configuration files int


unable to change device name in assets

Just registered a new pa 220. unfortunatly the wrong device name was entered. Going back it doesn't seem to let me change it. THe form opens up, i make my change and hit submit. nothing happens




Help with "blutmagie.tor_exit_nodes" miner prototype

I'm trying to create a miner that generates a list of TOR exit nodes for consumption by PAN-OS in an EDL. I found the "blutmagie.tor_exit_nodes" prototype and built a graph. My graph uses stdlib.aggregatorIPv4Generic for the processor node and stdlib


Captive portal SSL decryption policy requirement



PAN has the following document [1] which says you need to have SSL decryption in order to redirect SSL pages to captive portal.

To me it doesn't seem to be accurate. Response page [2] workaround seems to be doing the same i.e without having an SSL


Top Liked Authors