Floating mangement IP for firewall

Hi All,

Can we setup floating management IP so that I can always login to active device ?

We do have option by setting management profile for interface, but looking for an option if we can set it up via management interface .

Thanks 

Using API to dynamically register and tag -- can IP address be a subnet or only individual address?

In one of our firewalls we have zone A which has network x.x.x.x/24, and zone B which has network y.y.y.y/24. There is a rule allowing traffic between them. Some high-ranking people at my company need to be able to block this traffic automatically at

PA-VM interzone routing

Hello,

I've configured up two interfaces on my PA-VM (management 10.0.64.3 with VMnet0 - 10.0.64.0/24 and data with VMnet1 - 10.0.0.0/16). Management is directly connected to PC with Windows and Ethernet 1/1 to FastEthernet0/0 on my switch. I've confi

How to get Evaluation License

Hi,

I have Palo Alto Customer support account, i need evaluation license for setting up lab for testing purpose before implement in production

How i can get this ?

Virtual Wire - Two Subinterface with seperate Tag Paired

Minemeld unable to login to web gui

I have seen a few related articles on here about this already, but I haven't been able to resolve my issue. I am receiving the following error when trying to login to the web gui: "ERROR CHECKING CREDENTIALS: Bad Gateway"

I found that the minemeld.

All site to site tunnels drop

We had an incident where we have site to site VPNs coming into the Palo.  The connection dropped and they would not come backup, even after dropping the VPN on both devices.  The end result was a reboot of the firewall and it came back up.  What I sa

Multiple websites are getting blocked

Users has been reported that multiple sites are getting blocked suddenly,
We have the connectivity between minemeld and Panorama, where the Malicious URL's or IP's getting blocked.
We need support in getting verified the MINEMELD configuration what c

url filtering with Alert category

Hi, 

I have configured the URLs to allow through the firewall with an alert category. 

The firewall is allowing the URL but user get the "warning: Potential Security Risk Ahead" page with Go Back (recommended) and Advanced option.

Is there any techni

Export logs from PA7050 to Window Log Server

Hi Guys,

Any possibility we can export daily logs from PA7050 to external windows log server through SCP or FTP? Been told there is a limitation for PA7050 to do so because the log database is too large for export or import. Any possible can do it by

Natting to ip address which is not binded to any interface

Hello Everyone,

I want to nat traffic going from dmz zone to wan zone. I want to nat ip (172.16.16.16&172.16.17.17-dmz zone) to use nat ip 200.0.0.1 which is not configured to any interface. I am unable to perform this. Please find below snap.

1)Interf