Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
As of 4.1.11-9 it seems we no longer have the option to disable attempting to connect.
Is there anyway this disable option could be added back? I found it very useful, as did my coworkers.
Thanks
Hi all,
I've just installed a PA 3220 and there're dynamics VPNs tunnel. IKEs are up. However, phase 2 (tunnel) aren't coming up.
Looking at the logs I see the following logs for all VPNs .
"initiate negotiation to dynamic peer from IKE gateway is n
Can this be accomplished without something like a Performance Routing service or hybrid WAN systems a couple companies offer? Is it a roadmap feature of PAN-OS PBF? PBF seems to be one of few things that do NOT support Regions.
I'd like to PBF my con
...
Good day everyone and thank you in advance.
Just to be sure I'm not losing my mind entirely - I thought I'd post up here and see if any veterans have any ideas. I was troubleshooting something earlier today with a re-IP on some printers traversing
...
Hey guys, just attempted to setup minemeld . when we login to minemeld, i noticed that it is showing that minemeld engine has failed to started. attempted to restart engine but it does not seems to have any difference in results. we did harden the se
...
Hi,
Is there any official word when PA will get protection for CVE-2019-19781 - Vulnerability in Citrix Application Delivery Controller and Citrix Gateway?
https://support.citrix.com/article/CTX267027
Thanks.
PANOS 8.1.9
When we are doing the config backup we do not see all the config is getting backed up – for example, the firewall rules, NAT and port forwarding rules are not seen in the backup – Apparently a very fraction of the configuration is saved.
...
So after a ransomware attack back in september, we started blocking traffic from certain regions. However I have users that are trying to access legitamate sites from those regions. Is it possible to block the regions, but allow sites from said reg
...
I'm currently running 8.1.10 on PA-820 firewalls. They are in A/P failover pair. Last night, all of a sudden primary firewall started showing "( eventid eq routed-OSPF-neighbor-down )" in system logs and OSPF went down. I failed over to secondary and
...
Hi Everyone,
I am testing 8.x and 9.x VM series NGFW in Google Cloud Platform and I am testing integration into Google SDN fabric.
I successfully created a VM information source feed and some Dynamic address Groups using GCP fabric filters (network ta
...
I've been creating security rules to allow Traps Management (with the traps-management-service App-ID) pretty tightly by also defining destination networks (using FQDN objects for the multiple <tenant>.traps.paloaltonetworks.com and common contentpro
...
I am building out a test environment using GP as always-on/prelogon. The issue that I am seeing is that one test user, this seems to work fine and another test user it does not. Both users are running the same PC type and same Windows 10 updates into
...As you know for families 5200 and 7000 the cable PAN-QSFP28-AOC-10M or PAN-QSFP-AOC-10M is used for the connection of the HA however I would like to know if there is a sku for HA connectivity in the new 3200 family
Hello, I just installed minemeld on Ubuntu 18.04 (with a few tweaks from here) and the setup was working. But now I have a VM that consumes 2 full CPUs since about 30 minutes. When I try to login to the admin web interface I get after a few seconds t
...
