Migration from Juniper to PANOS
Hi All, we are looking at migrating from juniper to PANOS, now that expedition is EOL, what's the process for this please.Any insight would be great. TYIA
Hi All, we are looking at migrating from juniper to PANOS, now that expedition is EOL, what's the process for this please.Any insight would be great. TYIA
Hi Folks....requesting anyone's Palo Alto FW troubleshooting expertise: In one of our implementations, we ran into some BGP session establishment issues and that delayed the change a lot as we couldn't figure out the issue. The issue was the BGP authentication failed. Once we disabled BGP authentication, BGP session got established. Is there a w...
Hi, I'm trying to export a device state from the Panorama CLI into a remote TFTP server, but I get a timeout.Both the Panorama and the TFTP sever are on the same network, so the traffic does not pass the firewall.Also, there's over 200 GB of free space on the TFTP server, so the problem is not a lack of space. What's the reason of the timeou...
Hi, My question would be, is it possible to use template variables to set primary end secondary dns for DNS proxy rules in Panorama? I can set a static entrys' IP address value to a variable defined in the template, but can't find the way to do the same for proxy rules. Context: Our branch offices each have their on subnet, doman controllers an...
I am running a set of vm-series VMs on Azure. From time to time there is packet loss for traffic going through one of these VMs, I am trying to find a metric to monitor that. I could not find a metric exposed through SNMP, but looking at the global counters that increase during TCP retransmission, I found "tcp_case_2" global counter seems to mat...
Hello Team, I am not able to downlode PAN-OS for VM-Series KVM Base Images. we gating below error.
Hi, I saw a function named ecmp on palo alto NGFW, I think that it can make outbound traffic load balance on two or more physics line or logic line. And I also saw there was a inbound interface information in the session table of firewall. So I want to know if there are two out line on the firewall and connect to outside network named por...
Hi; Can you sort security policies by the hit count?. I could not do that, but thought I would ask. KindlyWasfi
hello all, i'm trying to create snmpv3 user account with read-only permission but when i went through the option on GUI there was nothing about specifying the permission whether it's read-only or read & write. i would really appreciate the help.
Dear all: I have a question about search security policys. We have lots of security policys on our pa ngfw. some of them use a address group as a source& destination condition, some are not. The content of address-group may be a range or a subnet, but now I want to search security policys that relate a pariticular address, this add...
Currently have a PA-440 at home and trying to setup Signal messaging application. I know the application is cert-pinned and therefore cannot be decrypted. To get it to work, I added to the SSL Exclusion Decryption list the following hosts/domains per the Signal website: https://support.signal.org/hc/en-us/articles/360007320291-Firewall-and-Int...
I need assistance integrating Palo Alto firewalls in an Active/Passive HA setup with Panorama. Below is an overview of the setup: At customer sites, we have Palo Alto firewalls configured in Active/Passive HA mode, and they are currently managed locally. We are now planning to integrate them with Panorama, which is hosted in the AWS cloud. An ...
Hi there, we're shipping our logs to a centralized syslog instance. That works great for all types of logs from the PA with the exceptions of the CONFIG logs.The CONFIG logs are submitted at all, with the problem that the interesting parts "before-change-detail" and "after-change-detail" are not delivered.Does anyone else ship CONFIG logs and if...
We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...
Hi community, I have an issue where system log shows severity high for an event: tls-X509-validation-failed and the description: Palo Alto PublicCloud Server certificate validation failed Dest Addr: sg.wildfire.paloaltonetworks.com Reason: unable to get local issuer certificate Palo Alto PublicCloud Server certificate validation faile...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

