Route Reflectors

Is there more details on the route reflector options? The documentation is pretty vague. 

what is enable sender side loop detection? What is bidirectional peering?

Panorama in NSX deployment not showing interfaces within the template

Hello community!

I have an issue you maybe can help me with:

I´m deploying PAN-VM firewall on NSX and noticed that the template where I added the VM doesn´t have interfaces.

The VM is connected to the Panorama and the template is in sync, I push a new

ConnectionError: Too many connections

Hi,

I'm using outputs feeds from minemeld in my Firewall and I have seen the next:

1. If I try to retrieve an output with 142 or less indicators, it works. The Firewall shows the entries from minemeld output node.
2. If I try to retrieve 150 or more indicator

scheduled reports are not being generated

Hello Community!

I have an issue with scheduled reports, they are not being generated. I send a "test email" and I receive it, I reboot the Firewall and I receive the scheduled reports for some time but then it fails again. I´m running PAN-OS 7.0.1

PA 500 home use

My employer is starting to use PAs, and as a networking person I want to get much more comfortable with them, I wanted to buy an small one off ebay to use as my home router. I won't need global protect, OR wildfire as I just want to run the PA as a r

Best Practice Security Profile Adoption - Determine Which Feature Impacts which Adoption Scores?

How do you determine(map)  which Feature (Policy, Objects, Network, Device) is conntected to which Adoption Category (Wildfire, Anti-Virus, Anti-Spyware, etc.)?

I am missing the connection between how to improve my metrics for the Security Profile Ad

Suggestion on how to made dual IPSec VPN UP with Dual ISP failover by configuring Dual VR

Hi Team,

I am just wondering on how to made Dual IPSec VPN Tunnel UP at the same time with redundant ISP link after mapping each ISP in different VR.

We have configured dual VR. In that, Primary ISP port is mapped in Primary VR and Secondary ISP por

Avoid Attack from outise in PA

HI, 

We are having attacks from outside to DMZ. Many diffrents ips are attacking our public range. These attacks are causing packet buffer 100% and CPU 100%, doing an outage in our network. So in traffic logs we can see all sesiones being denied for

Global Protect with Azure MFA issues

PA3020 PANOS-8.1.7 GP-4.0.7

Using Radius server for auth.

Radius talks to Azure MFA for 2 factor auth.

Having timeout issues.

Sometimes user not getting MFA prompt on the phone.

If the get MFA prompt they will get auth errors.

Panorama help : How to reset rules hit count

Hello everybody,

I have to reset three policies usage in Panorama 8.1 firewall but in this version is not available this option in the GUI.

I guess I can do it from the CLI.

Can anyboy help me?.

Thanks in advance.

Restart is disabled because no ike sa was established

We have IPSEC tunnel to vendor.

Tunnel is up 

Gui shows Phase 1 is red.

I can ping the IP on the tunnel on vendor side  which is Gateway for Vendor LAN.

Unable to ping the LAN IP on vendor side.

PA shows traffic is passing but nothing coming back from ve

Firewall rules suggestion

Hello

I would like to have advices regarding firewall rules. I'm deploying a PA-3220 on my main site (site A). On this main site, I have several zones configured on my PA3220 (user, servers, dmz Intranet,). I have also 5 remote sites.

I must create a

Application is identified ad rtp-base and PA still doing PCAP

Under traffic logs we see  pcap green arrow for this application rtp base.

What is the reason that PA is doing pcap for this if app is identified.