PA-VM interzone routing

Hello,

I've configured up two interfaces on my PA-VM (management 10.0.64.3 with VMnet0 - 10.0.64.0/24 and data with VMnet1 - 10.0.0.0/16). Management is directly connected to PC with Windows and Ethernet 1/1 to FastEthernet0/0 on my switch. I've confi

How to get Evaluation License

Hi,

I have Palo Alto Customer support account, i need evaluation license for setting up lab for testing purpose before implement in production

How i can get this ?

Virtual Wire - Two Subinterface with seperate Tag Paired

Minemeld unable to login to web gui

I have seen a few related articles on here about this already, but I haven't been able to resolve my issue. I am receiving the following error when trying to login to the web gui: "ERROR CHECKING CREDENTIALS: Bad Gateway"

I found that the minemeld.

All site to site tunnels drop

We had an incident where we have site to site VPNs coming into the Palo.  The connection dropped and they would not come backup, even after dropping the VPN on both devices.  The end result was a reboot of the firewall and it came back up.  What I sa

Multiple websites are getting blocked

Users has been reported that multiple sites are getting blocked suddenly,
We have the connectivity between minemeld and Panorama, where the Malicious URL's or IP's getting blocked.
We need support in getting verified the MINEMELD configuration what c

url filtering with Alert category

Hi, 

I have configured the URLs to allow through the firewall with an alert category. 

The firewall is allowing the URL but user get the "warning: Potential Security Risk Ahead" page with Go Back (recommended) and Advanced option.

Is there any techni

Export logs from PA7050 to Window Log Server

Hi Guys,

Any possibility we can export daily logs from PA7050 to external windows log server through SCP or FTP? Been told there is a limitation for PA7050 to do so because the log database is too large for export or import. Any possible can do it by

Natting to ip address which is not binded to any interface

Hello Everyone,

I want to nat traffic going from dmz zone to wan zone. I want to nat ip (172.16.16.16&172.16.17.17-dmz zone) to use nat ip 200.0.0.1 which is not configured to any interface. I am unable to perform this. Please find below snap.

1)Interf

Log traffic on Panorama is less than firewall device

Hi everyone,

iam using the monitor > traffic on panorama and saw the period logs more smaller than the firewall device, in panorama we have log until 02/14/2020, while in firewall device the log starts on 01/31/2020, i used the command show system log

PBF rule with src zone 'any'

Does anyone if it is/should be possible to configure a PBF rule with src zone any?
The inline help says "To choose source zones (default is any), click Add and select from the drop-down." but 'any' is not an option when I actually try to create the ru