Assign Secondary Public IP address

We needed additional Public IP for SIP and web server hosting.

My original IP was a single IP example "67.173.83.121\30".  The ISP gave us another range to use 67.173.75.73\28.

How can i add 67.173.75.73\28 range to my PA so I can apply NAT rules to

Problem with captive portal redirection for https

Hello there!
I have Captive Portal configured in a firewall. Unknown users are redirected when attempting an HTTP site, but those users are not redirected to the Captive Portal page when attempting to reach an HTTPS/SSL site.

The Captive Portal policy ...

Crednetial Phishing Agent Permissions

Does anyone know if the credential phishing agent requires different\additional permissions to the base User agent?

I have installed with our 'standard' account and I get this in the logs:-

 09/03/18 18:05:33:996 [ Info 2036]: ------------Service is

VM-200- Upgrade from 7.1.x to 8.0.x

I tried to upgrade a VM-200 from 7.1.10 to 8.0.15 but it failed as we had 4Gb RAM.

Is the requirement for upgrading to 8.0.x is 2xcpu,6.5gb –ram and 60gb.

Is it the same if we upgrade to 8.1.x after upgrading to 8.0.x.

Currently we have 40GB -- Can we

Sub-Interface for one IP address

Hi There,

I have a generic question about the Palo alto way of treating sub interfaces? Can I do sub interface on one of the physical interface for one netwrok address? for example, I did sub interface the ethernet1/5 as ethernet 1/5.123 and configur

DHCP Options for Mitel VoIP

I recently replaced a Sonicwall with a Palo Alto firewall.

One thing I could not get working are the DHCP options related to Mitel phones.  I'm wondering if anyone has gotten these working.

What the issue is that there are 3 options that are integers

Trouble establishing IPSec to Cisco ASR 1001X

I'm working with a business partner and we've verified phase 1, phase 2 parameters. But this is what I'm seeing in logging after running test vpn ike-sa gateway:

2019-02-26 09:57:21.638 -0800 [PERR]: { 43: }: 77.77.236.54[500] - 207.99.97.218[500]:(n

How Set Up the VM-Series Firewall on XenServer?

Hello, everybody.

I purchased the Vm-300 virtual firewall.

I have installed XenServer 7.1 servers

I would like to install version 8.0+ of the firewall on this virtualization platform.

I have downloaded the OVA extension file, but the import of the virt

tls1.3 and required action?

I know I am late in posting about tls1.3.

I have my permiter 5020s doing inbound and outbound ssl decryption. I'm currently on 8.0.13 and never had any issues. with tls1.3 coming this March, should I fear of breaking ssl connections and upgrade to lat

After GP Update the netbios domain was automatically added

Hello,

after update the Global Protect Client with our client management from version 3.1.x to 4.1.8 the GP Client shows the login mask and autocomplete the user credentials inclusive our internal netbios domain?!

The user can not login with hw\usernam

Security Policy Application

Hello everyone,

I'm hoping someone can help me understand why a security policy is not applying the way I thought it should. Here's what I have:

I have each of our schools configured on different DHCP scopes. I then created an Address Object using sla

Symmetric return on L2 subinterface fails after some time

We are running the latest PanOS 8.1 version on a PA3050 and we want to make use of symmetric return. In general this is working just fine, but it seems we are triggering a corner case. We can successfully initiate an SSH session (i.e. key exchange, a