General Topics

Single pass parallel processing

Hello,

After Reading the documents, I still don't understand why WE Say thay the single pass software performs operations once per packet. "As a packet is processed, networking functions, policy lookup, application identification and decoding, and

Tunnel Monitor - PAN-OS SDWAN

I've had an issue recently where randomly I've had members of my VPN mesh start to have the tunnel monitors going up and down constantly which causes BGP to never be able to establish with the peer since the static routes to the loopbacks are pulled

PA-220 disk space issues

As most with a PA-220 have experienced, regardless version running (currently latest 10.2.3-h2) root partition fills up all the time and have to run the disk-usage cleanup commands manually and tried enabling aggressive-cleaning as well, it just cont

Configuration Sync is not happening on HA,Server error : Failed to synchronize running configuration

Running configuration  sync is not happening between HA peers(PA-5050). We tried manually from Passive firewall CLI by the command request high-availability sync-to-remote running-config but I are getting the error Server error: Failed to synchronize

Destination NAT Mismatch error

Hi I'm configuring a new PA-500 and have it working for source NAT going from Tusted to Internet. Now I want to create a destination NAT rule to allow traffic in to a web server located on the trusted net. I have created a rule almost exactly as it s

Issues with pushing out 10.2.9-h1

There is not a community discussion for issues implementing 10.2.9-h1

We have a maintenance window to push out 10.2.9-h1 Thursday evening and with recent issues with 1.2.7.h3 and other roll outs i am starting this thread for the community.

MLAV cloud error, all machine Learning engines stopped

Received this high-alert message on a PA5220 (10.0.8-h4) this morning, "MLAV cloud error, all machine Learning engines stopped". Has anyone else received this message before? If so, what steps should I take to troubleshoot and resolve the message? Th

GlobalProtect Gateway with Multiple Client Authentication Config

Hi there,

I have multiple client authentication configurations set up on my GlobalProtect portal which use the same OS type.

Order is as follows:

1 - Windows OS with local auth on the firewall.

2 - Windows OS with LDAP auth.

What i want to achieve is i

Palo Alto Offering for non profits

Hi, I am curious why palo alto networks does not have a "security for good program" or donation program for non profits?

Palo Alto is a large company and I think it would be an awesome move for them. 

Some of the companies that have one are

Cisco and

Can't push after adding a new subinterface to newly created vsys

Hi folks,

I newly created a new vsys for my ha-pair in my panorama. I have also created a new device-group but only use a single template for both vsys.

I've tried to create a new subinterface in my new vsys. The interface is already connected to m

moving palo alto firewall management to a different domain

We have a domain that is going out of commission, so I need to move the palo alto firewall management software to a different domain. Is there a safe way of doing this?