General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 43 replies

Resolved! User ID Agent

Where the userid agent save log file ? We want to start audit when User ID update task failed on PAIs there a possibility to move the logs of userid to the siem / syslog server


Hello, In order to debug an issue in our LACP interfaces.I need to run lacp debug and to find the log file of lacp negotiation. And there is a log file of all ethernet negoatiation? Thanks in advance.

Credential Theft Protection and SSL Errors

I am currenlty doing a proof-of-concept test for the Credential Theft Protection feature. SSL decryption is configured and working. I can get the system to re-direct to the Anti Phishing Continue Page. However, that page uses the SSL cert associated ...

Custom App-ID for DNS-over-HTTPS

Hi community For everyone who (like me) does not regularly check the "Custom signatures" forum I wanted to inform you about this custom App-ID to detect DNS-over-HTTPS (DoH). Until PaloAlto provides an official custom App-ID for this or implements su...

Resolved! ISP redundancy and route load balancing.

Hi, Community! I'm looking for some help with a customer today  Here's the situation: a customer has a dual ISP configuration and wants the traffic both to be balanced between the routes of the two providers and that a redundancy scheme is put in pl...

CMachado by L2 Linker
  • 8 replies

Resolved! Replace passive member in HA (A/P)

Hi, We need to replace the passive member in a cluster. So in the HA preempt is not enabled. And priority in the active member is 100. So i understand that we can directly connect all the cables for new devices and this new member will take passive r...

BigPalo by L4 Transporter
  • 1 replies

Stuck in Failsafe Bootloader. what now?

My PA-820 is stuck in failsafe bootloader mode. what are my options now? I am no longer getting the option for MAINT mode either. If I let the system boot on it's own I get the below and it just keeps rebooting. Welcome to the PanOS Failsafe Bootload...

GPL-DDay by L0 Member
  • 4 replies

Resolved! No source user in logs post 8.1.2 upgrade

At the weekend I upgraded all our boxes from 8.0.9 to 8.1.2 as we need to make use of the new GP - Split Tunnel by URL features & Enhanced UserId coolness. Yes, I know - this was brave  Everything seems to be working as expected & as it was pre-upgr...

SimmSimm by L2 Linker
  • 2 replies

Asymmetric routing with the same interface

I have to deploy the WAN firewall which have 2 WAN link. The requirement was egress traffic from the firewall to WAN will be send to Link A but the response traffic will be ingress from the Link B. If I've set both of these interface in the same zone...

Site to site VPN help :(

Unable to make VPN work. Both "IKE Info" and "Tunnel Info" are red light in IPSec Tunnel.The peer is a Juniper vSRX.Normal configuration with trust, untrust and VPN zone in both firewall. Each zone has its own subnet.Both firewall can ping each other...

jeremylo by L3 Networker
  • 5 replies

VM-Series firewall on VirtualBox

Hi,I know that VM-Series firewall requires VMware ESXi running vSphere 4.1 or 5.0.But I don't have VMware right now on my laptop and only I have is Oracle VirtualBox 4.2.6 - just for tests and presentations (not for commercial purpose)On VirtualBox I...

Clientless VPN

Hi All, can someone provide configuration example for Clientless VPN access through GP portal...I was already used configuration steps explained on this page, but seem that it not helped in my case. I'm able to authenticate and open portal landing pa...

Tician by L3 Networker
  • 5 replies
Top Solution Authors
Top Liked Authors