Web Interface Log in Error - Panorama 8.0

Hi everyone,

After a power outage, I can't log in to the Pananorama 8.0 web interface. The error message below is displayed and I am redirected to log in again:

"Welcome admin. There are no device groups - please create one first. Device groups are n

USB Logging

How can I get a log entry to fire when I insert a USB Flash Drive into a PA-850? I have looked in all the logs that are native to the device and there are not entries anywhere in any of the logs I have looked into. 

IPOE Standard

Hi, 

Does anyone know if the Palo Alto supports the IPOE standard? I have a PA-220 that we need to use for a PPPoE Internet and I have just been told that they use IPOE which doesn't require a username & password. 

I suspect I could just set it to DH

I want to ignore to update ip-user-mapping information from other domain.

Hi,

My FW is updated ip-user-mapping information from only A DC with a.com.

A DC have been connecting Forest with B DC included b.com.

Sometimes, The FW has been updated users in b.com domain from A DC.

So I want to ignore to update user-ID from A DC fo

DNS server failover not working for GP client

We have a problem with the GP client and DNS. when the primary DNS server configured on the GP gateway is down, the GP client is unable to resolve FQDNs (over the split tunnel).  Once I reversed the and made the secondary (active) DNS server the prim

URL categories

1. Is there a limit to the number of URLs we add inside one URL category?
2. If i will add many URLs in this category affect Palo Alto performance?

iPad Global Protect Auto Connect

Good morning,

GP works great on our iPads, except you need to open the app and hit 'connect'.  Sometimes it becomes disconnected and needs to be done again.  This is for K-12 students, so we're hoping there is actually a way to force persistence.  Is

PA VM and SRX IPsec -- 2 Phase-2s using the same Phase-1

Hello,

If someone would like to establish 2 IPsec Peerings between a PA VM and a Juniper SRX, can you use the same Phase1 for 2 different Phase2 on the Palo Alto ? 

Phase1 is IKEv2 if it matters.

trouble with DNAT ( https to http )

Hi - I am unable to redirect https://mypublic-ip:7788 to http://myprivate-ip:8899 using DNAT. Any idea please. Tks.

support portal

Is there an issue with the support portal. Unable to create a new case

GlobalProtect says "Connected" to quickly........

Someone can stop me if it's meant to do it this way, but if feels like a bug that needs fixed.

GlobalProtect 5.0.4-16

PanOS 9.0.1

HIP Checks in place

Scenario:

Using HIP checks to limit scope of connectivity to internal network.

Issue:

Let's say that one

Device Average Memory Usage High PA-3060

We have observed a high memory utilization on PA-3060 ,do we have to upgrade our RAM or this is normal behavior?

 show system resources

top - 02:47:35 up 631 days, 20:43, 1 user, load average: 0.02, 0.04, 0.05
Tasks: 117 total, 1 running, 115 sleeping,

Global Protect UpGrade Windows Installer

Pushed the global protect client out through SCCM. Which works, but when the auto update is applied, we end up with the windows installer issue. the msiexec /Option error

I have checked to make sure no other installer is running, and there is nothing