New VM-100 deployment, cannot ping or tracert to external websites

Just setup a new VM-100 device in Azure. SSL decryption and security policies are in place. My test client PC can browse the web, and all of the policies seem to work.

However, I cannot ping or tracert to any public website (e.g., www.apple.com). The

Palo alto global protect portal and gateaway

Can we disable the global protect portal & gateway and reactivate it whenever we needed it instead of deleting it entirely?

We are using 9.1.3

HA failover between two geo-separated firewall

We are going to configure Active-Passive HA for PA3250. Primary and secondary device both at different locations , distance - 25 Kilometer.

Location A ( Primary FW) --- L2 switch -------------P2P link 60 Mbps-------------------------L2 Switch -------L

PAN 3220 fail without Backup

Dear,

I have a PAN 3220 that has failed and I have not been able to back up to put another PAN 3220 that I have as a spare, which they recommend ? 

Swap the Disk ???

My website is listed on url filtering tool

This website appears in the URL filtering tool as having a problem which is not true  https://epsfeg.org/

So we need your help to remove it from the list

Wildfire cloud registration attempts without license

Hi,

I am having an issue with PA-220 appliances attempting to contact wildfire cloud. They do not have Wildfire license, but are attempting to register at wildfire.paloaltonetworks.com. The issue is that the firewalls are attempting to set up this con

Help allowing .dll files for VPN users

Hi,

Like everyone, we have a lot of folks working from home. We use a CRM system called Ajeera, and in order to load up the various modules, the client system downloads an app from the server, which includes a .dll file. In the office, it works just

Authentication failed from AD

Hello,

I have integrated the AD with Paloalto , it is working fine and i can see the IP user mapping is correct, once i tested authentication profile

I got the below error:-

Once i tested the authentication by local profile it is working fine.

Can any

Administrators - AD users

Hello, Community. 

Do you know if is there a way to change the "level admin" of an AD's user? In Device > Administrators I can't see the firewall's admins. Just the "admin" account. If I try to create a new account, I can't do it. The LDAP users can

Cannot install PAN GP VNIC driver

I have tried for over a month to install Global Protect and have it work, and can't begin to count on how many installs/uninstalls of Global Protect I have done. Many people have tried to offer suggestions and it seems like the root cause is the PAN

How to block skype ?

I have tried 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKTCA0

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClQWCA0

but still send/receive message via skype

I don't  implement ssl decryption

diffternt TLS protocolsbetween client and server supported in pan ??

we have a legacy client which supported only TLS(1.1) & need to connect to server in cloud which works on TLS1.2 only .. So If we do a SSL Decryption in pan firewall does pan will allow tls1.1 between client and pan firewall and tls 1.2 between pan f

How to send traffic for email logs to port 587

HI Everyone,

I have configured email profile to send system logs of firewall. I have configured the smtp server and my SMTP server is listening in port 587 but the firewall is sending traffic to the destination SMTP server using port 25.

Can anyone l