Active/Active monitor traffic logs

I tend to see a lot of "Unknown" or "n/a" for session end reasons on an active/active pair. Is this normal? 

Wildfire submission log

I don't understand wildfire work.

I have this example that Firewall had wildfire-virus signature but was created wildfire submission log before wildfire-virus identification

why?

Info related to license, support and signatures version over snmp

Hello Community,

Do you know if over snmp I can to have information about, license, support and signature info? Someone implemented snmp and can to see this information like cacti or other solution.

Best Regards

Andres

Packet capture

We have an issue with SIP sessions randomly hang on the firewall. We are trying to do packet capture on the Palo alto firewall. Since the issue is random, so we need to leave the packet capture on until it happens next time.

It seems the firewall aut

Prevent Global Protect connecting when on internal network

After some advice please. How can I prevent Global Protect client from trying to connect to an external gateway when the device is on an internal known corporate network ? My connect method is already set to On-demand (manual user initiated connectio

Error: "Detected another instance" An old GlobalProtect instance exists... (Mac 10.14.5)

New Macbook pro, MacOS 10.14.5 the user account and applications were migrated using migration assistant.

In the past this works fine. User is getting continual popups: 

Steps taken: uninstalled using globalprotect installer. Reboot. Reinstall. Same er

PA-5220 HA Configuration

Please can someone shed some light on the following issues which we are facing for PA-5220 HA Configuration:

1. We can see port lights on HSCI port but not on HA-1/HA-2 ports even when they are connected,. Should they be enabled somewhere because in GUI

Connection between two DMZ zone with MPLS

Hello,

We have a server on the DMZ zone and another server in the other DMZ site.

We need to allow traffics between the two DMZ zones with the MPLS connection.

I don’t know how can I put this configuration on my PA firewall or maybe I should contact my

IPSec / returning ESP packets dropped when terminating interface is in a different zone

Hi all,

I have an IPSec tunnel connecting to an old SSG. Tunnel came up successfully and SSG can see the traffic and is returning correctly into the tunnel. However PAN's decrypt counter remains 0. When i did a packet capture, the returning ESP packet

How to disable SSH weak algorithm supported

We used Nessus to run security scan on the PA-5220 we are trying out and it came back with the following medium vulnerability:

https://www.tenable.com/plugins/nessus/90317

The remote SSH server is configured to allow weak encryption algorithms or no al

Do I need SSL decryption to turned ON for Wildfire deployment ?

Can Wildfire engine detect & identify zero day or known threat if SSL decrption feature is off in Palo Alto firewall ? 

WildFire can discover zero-day malware in web traffic (HTTP/HTTPS), email protocols (SMTP, IMAP, and POP), and FTP traffic and can