Long commit times when changing DNS settings

On an HA pair of PA-460, the commit time is usually around 60 seconds, when changing the DNS settings to something that is not reachable, the commit time changes to 10 minutes+. I've tried replacing the primary but the issue is the same. When I looke

how to configure WAF in on premise PA

how to configure PA Model Type 3410 for Web Application Firewall (WAF) 

Unable to discovered ICMP and SNMP from solarwinds. Discovered in Solarwinds as ICMP Only.

dc1-fld-sdw-1a
dc1-fld-sdw-1b
Unable to discovered ICMP and SNMP from solarwinds.
Discovered in Solarwinds as ICMP Only.
we have checked there is no firewall block and verifed SNMP2 configurationsits looks good but unable to discover ICMP and SNMP

Serial

Is there a way to test remote host ports from the palo alto firewall?

Hello Palo Alto Team,

I new to Palo Alto and loving it but I am looking for PAN-OS cli commands similar to telnet, nc (netcat) or curl etc.. I have seen there is an option to do ssh source port (the scp command also supports this), can this replace

SSLVPN FOR Certificate (Generate)

Hi 

I try to establish SSLVPN LAB

But,I don't understand bottom Certificate Attributes function

the different between having setting and not setting 

Best Regards

Palo HA with LACP to Cisco Stack Switch

Hello Everyone,

Im trying to find a Palo KB that talks about recommended/best practise when setting up Palo HA with LACP to a stack switch (e.g. Cisco stack). 

Can anyone guide me on this ?

For some background, we are weighing the Pros and Co

Scheduled Log Export Failure

I have Scheduled Log Export but it's failing.  The system log reads "Failed exporting traffic log via ftp (last-calendar-day)".

If I run the export command via CLI, it runs successfully.

>ftp export log traffic start-time equal 2012/11/28@00:00:00 end-

Log exporting is failing. :(

Have export of traffic /threat/url etc set up on log export
All setup to use SCP.
Target linux server is setup correctly.
Test SCP server connection works correctly (see attach word doc)
Job fails with an error in system log :

Failed exporting data log vi

Customer Support Portal Down

Hi, 

https://support.paloaltonetworks.com/Security/Login

is down at the moment and says 'The Customer Support Portal is temporarily unavailable'. 

compatibility issue between GP and IOS18.2

Hi All,

We are currently experiencing an issue where mobile devices connected to Global Protect VPN are unable to receive internal emails. This problem has been observed specifically on iOS18.2, while it works fine on android devices and other iOS

Multi tenant and single tenant pricing

what is the pricing difference between the single tenant and multi-tenant  xsoar , also is it possible to convert single tenant server to multi-tenant directly without losing the data?

receive incoming errors / 'rcv_fifo_overrun'

Hello everyone. 

Got a question to the community on an interesting situation: 

- PAN-PA-3050 / PAN OS 7.1.10

- Drop Counter increases on two aggregated interfaces (ae3 - interfaces 1/3 & 1/4)

- connected via Cisco vPC tech with a Nexus FEX switch

- new