External/Untrust IP's showing up as Internal/Trust

I am at a complete loss as to what I am seeing. I have PA-3250's running 9.1.2 code in L3 mode. The interfaces are split up into 2 aggregated ethernet interfaces, each using subinterfaces (ae1.706, ae1.707, ae2.699, ae2.698, etc.) When looking at tra

lost access to the GUI after installed a certificate

I have installed a certificate that was working fine with my firewall, but suddenly I lost access to the GUI of the firewall.

I tried what is mentioned here in the link below with no luck.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=

HA1 showing down

HA1 is showing down, but HA1 Backup and HA2 are showing up.  FWs recently configured by contractor who has left.  Configuration appears correct.  Any suggestions?

suspend both firewall

What would happen if you suspended both of your firewall in an active/passive HA configuration? Starting with suspending the passive firewall first and then the primary firewall.

PR_END-OF_FILE_ERROR in firefox

I am having trouble with https://support.microsoft.com in firefox and getting this message. It works fine in chrome though, After i disable decryption for it, it works fine in firefox as well.  Why it is breaking in one browser with decryption enable

MS Windows Store Download Troubles

Dear Community,

I'm looking for the best practice to allow user to download apps over the ms windows store. But sometimes the download is successfully and sometimes i get an error. 

Why? 

No Decryption on which ip or url?

Which Apps I need to allow - ms-

GlobalProtect Pre-Logon NULL issue

Trying to setup new config for pre-logon, seems to be not working. I am getting machine certificate null error. 

First i was using internal PKI but then i found this KB and i was hitting the same issue.

https://knowledgebase.paloaltonetworks.com/KCSArt

How to Collect HTTPS on PA-3020?

Hi.

It's a question about my client's request.

The customer is using PaloAlto Pa-3020 (PAN-OS 7.1.23), and wants to collect https information (log) through the firewall. The customer told me, "I (customer) know that you need to install a private certif

SIP Trunks failing

Hi All, Im a Telephone system installer and have installed a system with SIP trunks which authenticate with the public IP (not register user name/password)

The SIP trunks remain working at all times for outgoing fails after a time normally about a day

High DP utilization alert

Palo-Alto event “Dataplane under sever load” triggers when the CPU utilization is 100%.   

In Palo-Alto firewall is there any option to set threshold for the CPU Dataplane , means if CPU Utilization is to 90 or 80% it will generate alert in system log