How to physical link down when rollback

Hi, I am using the 5.x version of paloalto.

HA is Actvie(FW1) - Passive(FW2) configuration and use link group.

For example, failover occurs when the wan link goes down. (FW2 / Actvie)

When the wan link is up rollback.(FW1/ Actvie)  At that time, the ent

Upgrade Palo Alto via Panorama

Hello,

We have 100 Palo altos firewall that we would like to upgrade via Panorama to 9.0.7, I am trying to create a group based on the prisority of upgrade to push the device>deployment >software package. 

Is there a way from Panorama 9.0.7 to create

hi, can anyone help me obtain the latest vm series appliance for testing?

the latest i have is 8.1.0

thank you

Paloalto home lab

Hi community,

I want to create Palo alto home lab i have  PA installed to VMware workstation on laptop. now I want to connect one interface of Palo alto to wifi and one interface to my local laptop on which Palo alto image is running so I can filter T

Refund request for VM-Series Next-Generation Firewall Bundle 1 (sold by Palo Alto Networks Inc.)

I have used VM-Series Next-Generation Firewall Bundle 1 (sold by Palo Alto Networks Inc.) in AWS for learning purpose . But its charged me $320 that I can't afford. amount automatically deducted. I contacted with AWS and they waived off their billing

Using SAML and Local DB for Global Protect Authentication

Hi, 

Have anyone configured SAML and Local DB Authentication both for global Protect? 

Admin UI enables the option to select single signon or the local authentication in login page. Global protect doesn't provide that option. Do we have to use a custo

Is there a way to limit concurrent login sessions connections per user in PRISMA Access ?

DNS Security packet flow

Hi,

I'm still testing DNS Security on a lab 220 before I deploy it to production and have one major question left.

What exactly is the device doing when it receives an unknown query? The query response times are too fast for it to be sending it to th

Virtual wire with Vlan trunking and vlan mapping

Hi all,

I currently have a palo alto that is connected to my switches.

The palo alto is configured as a virtual wire, and the WAN side of the palo alto is connected to VLAN 10, the LAN side is connected to VLAN11

This allows me to quickly move customer

Jumpcloud DaasS for User-ID mapping

Hi

We are currently using JC DaaS for user management. Am hoping if anybody has implement userID with JC, I get a suspicion it might not be possible. 

Group mapping via LDAP are possible, I've tested this bit.

https://support.jumpcloud.com/support/s/ar

QoS data details

Hello

I'm trying to read (and store) the QoS data (using API calls). Reading the data is working fine (for physical interface and for tunnel interface).

But I'm not sure how to interpret the data. The result was translated into xpath and value:

/node/c

Panorama/GP questions

- Being in different versions of Panorama (9.0.4) and PaloAlto (8.1.13), is it possible to deploy GlobalProtect clients? It does not work and I wanted to confirm this information

- Is it possible to publish the linux version in the global protect port

GlobalProtect Windows Client Persistent Breaks

Hi!

We have on ongoing issue with Windows users trying to use the Globalprotect client (up to 5.0.3 now) resulting in up to 30% of the clients persistently breaking with a driver issue[0] which has gone on long enough that we're considering using anot