Resolved! VPN from two PAs to Azure with asymmetrical routing using BGP

We have two on-prem data centers connected with dual L3 EVC links between them on our core switches and we are using OSPF for routing. We also have PA firewalls deployed in each location and we are extending OSPF up to them. We are then connected to

Resolved! Disable/Remove HA

We currently have a HA pair configured in a data centre and will soon be moving to a new site. For a seemless migration, we were wondering if there are any issues with or considerations we'd need to make if we were to disable HA and remove the HA con

Resolved! Migration from Physical to VM series firewall

Hi All ,

We are planning to move from on-premises to cloud .

Currently we are having physical devices and  we are checking possibilities how we can migrate to VM series firewall ?

Do we need to do config manually ? or is there anyway we can export/imp

Resolved! Export traffic log form Panorama via CLI

Hi,

We're using Panorama 5.0.x for collecting traffic log (which store the log at NFS Server), which I would search (or export) some old logs (around a year before).

I get time out via WebGUI, and tried scp but it only return the log headers

scp export

Resolved! IPSec tunnel initiation from specific IP

I need to have my IPSec tunnel initiate from a specific IP address on my outside interface. In the IKE gateway | local IP address field I can only select the outside interface IP/subnet and then the tunnel uses that default interface IP as the source

Resolved! Reason why the GlobalProtect session is disconnected

Hi Guys,

Some of our users experience disconnects from our GP VPN. When it happens it always impacts a partial set of the clients not everyone. I would like to know a method in which I can determine the reason of the disconnection.

In the Monitor-Log

Resolved! PBF and ipsec

HQ Network and Remote Network location are always through MPLS
PBF is configured with path monitoring for forwarding via MPLS and if mpls fails
traffic will be through ipsec_1 tunnel according to pbf created in palo alto.
How to configure in palo alto i

Resolved! PA-3320 Session's Setup Alerts for session limits reached

Today we had a networking issue that was random and hard to track down.  Turns out to be DDOS attack to our Citrix.  Since the Dashboard on the GUI doesn't show the BIG RED OMG Light when your maxed we missed it for sometime.

does anyone know how to s

Resolved! Routing problem

I am configuring a new AP-850. MGT port works fine and I can access the Internet. Now, I configure ethernet1/1 to access the Internet. 

I also configure the routing. But can't ping 8.8.8.8. Do I miss something or how do I troubleshoot it?

Resolved! Add production firewall to panorama

Hi All,

We are using PAN Firewalls on 9.1.5

We have 2 HA pairs both in production with around 100 policies on each and Global Protect on 1 pair.

We have purchased Panorama VM and want to add the firewalls to Panorama. 

Now I did find some previous artic