General Topics

PA220 Update - Cannot use management interface

Hello,

First question and first foray into Palo world from Cisco ASA and I'm stuck.

I am trying to update a couple of PA220's, we cannot use the management interface and therefore can only use an interface connected via DHCP  to our ISP.

I have got the

Adding 4th NIC to Palo Alto VM in Azure

Can a 4th NIC be added via the Azure Portal to a Palo Alto VM that was deployed via the Marketplace? I see only 3 interfaces are created, and the 4th be added after the fact? Thank you. 

How to enroll in Cyber Security Foundation, Cybersecurity Network Security Essentials, Gateway

I am trying to get PCCSA certified. On the PCCSA FAQs document under Q5 there are three courses listed other than the Cyber Security Survival Guide, the EDU-010 course, and the Practice test: Cybersecurity Foundation Course, Cybersecurity Network Sec

Global protect multifactor authentication with RADIUS

Dear All,

I have configured GP with multifactor authentication.

Example:- If I want to connect VPN, so I click to connect on agent it will prompt me to credential then I will enter username and password once it is succeded one OTP received my mobile.

not able to login in firewall by authentication profile

Hello team,

I have created a local and AD authentication profile.

Then I have created an administrator and the same profile allow there. but when i try to login in Firewall getting the incorrect user name and password error.

please suggest how can i lo

Windows radius with certificate config

Hi there,

I am testing Radius configuration for our admin accounts using windows NPS over PEAP-MSCHAPv2. I have our local CA cert in the cert profile and configured all the required params like vendor specifi attributes,etc. When I run a test authent

Maze Ransomeware Coverage

Hi Team,

Please let us know the coverage against for Ransomware-Maze under threat in our Palo Alto IPS.

Best Regards,

Sahul Hameed

Traffic-Log refreshs is broken when using long filters

Hi Community,

I often have the problem, that the traffic log view is refreshing automatically when using long queries.
I have the auto-update set to manual but after seeing the first filtered log entries, the whole log-area refreshes - very annoying.

PA-5050 8.1.11 Inter Vsys traffic

Hi all,

We got a Palo Alto 5050 active/passive HA configuration with two vsys with a lot of inter-vsys traffic.

Our DP1 is running at 100% during working hours.

I am convinced that the problem is that inter-vsys traffic can't be offloaded to hardware.

No valid URL is filtering license warning message After Adding RMA device

I have replaced the active device due to hardware fault now I had received RMA box and added to the network,

Then I did the Setup, License Transfer, and High Availability successfully.

After pushing the configuration to the new RMA box. But there is

Is it possible it configure Qos with Global protect.

Behind the firewall, we have 3 servers which access by the remote user.

We want to prioritize servers service so the remote user(connected with Global protect)  access this server on optimize way @Reaper 

GlobalProtect linux

I'm trying to get the linux client to always connect.

Manually running a shell script to check if globalprotect is running and then connecting again works.

But if I run this same script with @reboot from crontab -e it never connects, until I actually

adding zone and subinterfaces

Hello 

I have panorama 9.0.4 and palo alto fw 8.1.7

we are not using templates

I have to create 6 zone and subinterfaces . So do i need to create them locally on the firewall ?

Will it get sync to panorama automatically ? or do i have to do something