Test security policy match cmd from Panorama CLI

Hi All ,

Can we use test security policy match cmd from Panorama  ? 

 i can see option in GUI , but unable to find using CLI .

Thanks

IPsec VPN throughput on 3220

Hi Everyone, 

As per PA-3220 datasheet IPsec throughput can be 2.5Gps.

https://www.paloguard.com.au/datasheets/pa-3200-series.pdf

The palo in my environment got  1 Gig interface (internet facing) and multiple ipsec tunnels are configured to communicat

BIOS Change Validation

Hi All,

Does anyone know how I can view the BIOS version via CLI without rebooting?

Best,

J

how to create virtual system in gns3

Hello Experts,

I am new to palo alto. I have installed palo alto (8.0.0) in gns3 but there is no option of creating virtual system. May i know how to create ? Also could you please let me know from where can i learn palo alto. Is there any document/we

Both firewall become Active in Active Passive setup.

Hi Team,

Can anyone tell that in what situation both firewalls become active in Active- Passive setup of HA?

Thanks in advance!!

Issue with global protect VPN 5.0.8 on MAC machines

Hi Team

We are facing issues with the newer version of global protect client version 5.0.8 on MAC machines. The client once installed, doesn’t ask for credentials & try’s to connect directly to the vpn. Please let us know if there is an know bug rela

Firewall PA-220 Replacing default localhost SSL certificate

I created Certificate request, generated SSL certificate to match IP address of my Palo Alto firewall (CN=management IP) and uploaded cert following this guide:

https://www.ssldragon.com/blog/how-to-install-an-ssl-certificate-on-palo-alto-networks/

Th

Email notification on Palo alto devices, in case of disk full.

We need help in configuring the Email notification on Palo alto devices, in case of disk full.

URL filtering does not work with Firefox

I am applying URL Filtering but I notice that with chronium type browsers it applies the blocking, making tests I see that the filters are not being applied when you surf with Firefox.

You can even enter XXX pages.

What's wrong?

I am bringing user group

cli error messages during boot

Dear community,

after factory resetting one of our pa220s i am seeing multiple error messages during boot up

VPN Palo Alto<->Cisco router issue

Hi,

We have a VPN between PA and cisco router. THE VPN is UP but we are having a strange behaviour with Phase1 lifetime.

WHen the lifetime phase1 expired (24hour), the phase1 goes down in CISCO side, and we need to renegotiate pahse1 in order to get u

XFF Value 1.1.1.1 when "Strip X-Forwarded-For Header" enabled

Hello,

Looking for some help if possible?

Trying to set up XFF (PA-3250, 8.1.12), I have tried to set it up following this tutorial:

https://live.paloaltonetworks.com/t5/General-Topics/Configuring-XFF-logging-without-a-URL-Filtering-License/td-p/23998

remove disk fromPAN 3220

I need the process of how to remove the hard drive from a PAN 3220 since I cannot enter maintenance mode and before doing the RMA for the firewall, I must clean the disk