Verify CA root certificate

Hi,

Related to the new Emergency Update Required - PAN-OS Root and Default Certificate Expiration 

After you do the workaround to renew the certificate. Is there any way to check the new validation date for this internal cetificates to check its

HA dedicated port inop

I setup active-passive PA-5410 firewalls (brand new) and I can't get the HA ports to communicate. The secondary has activity lights when I plug into a switch, but the other one is completely death. Is it possible that I received a new PA-5410 with a

possible to know what triggered malicious website classification on my website?

I run a small website (www.milkywayidle.com) which is an online game ran directly in the browser. after a few recent updates around 2-3 weeks ago, I saw noticed that https://urlfiltering.paloaltonetworks.com/query/ classified my website as malicious.

DUAL ISP IPSEC TUNNEL ECMP

Hi,

Firewall

DUAL ISP

ISP1 ETH1/1 IPSEC TUNNEL 1

ISP1 ETH1/2 IPSEC TUNNEL 2

ECMP Method HASH

I have ECMP enabled with DUAL ISP with two IPSEC tunnels going to another firewall with one ISP. What I am seeing is sometimes is IPSEC tunnel from Eth1/1 to th

Palo Alto device is wrongly directing the traffic . DUAL ISP IPSEC VPN issue

we have two dynamic ISP in single VR with ECMP and we have setup dual IPSEC VPN tunnels towards single public IP to other paloalto . our issue that  PA wrongly forwarding traffic , ISP 2 is using MAC address of ISP1 when initiating VPN traffic to pub

How can I get Panorma VM trial license ( studying purpose) for EVE?

Hi All,

Please let me know. How can I get a #Panorma VM trial license for study purposes? Currently, I have ##Paloalto Firewall trial license, but I do not have a #Panorma VM trial license.

Security Policy

hello

we have taken over support of a PA 

there are a number of entries configured under the Security policy 

our customer has reported an issue that we are trying to troubleshoot 

can I use packet trace or packet capture to see what policy an IP Add

Change panorama mode from "management-only" to panorama-mode

Hi, 

We have a panorama (version 10.1.6) in management-only mode. This panorama is maging 6 FWs. We would like to change the mode to panorama in order to get the logs. So what implications should keep in mind? i think it should be necessary to incr

FW wrongfully declared as a spare

Hello,

One of my FW is wrongfully declared as a spare and thus I can't update it without transferring licences from another FW.

It seems that I can't chage this property on my managing asstets page. 

Can anyone help. ?

Regards

NGFW credits support type

In the credit estimator, it shows a choice of support options: "Premium" or "Premium Partner-Led". However, there is no separate support SKU to specify while ordering credits, neither is there such a choice when creating a deployment profile. Can som

How to go to "advanced items" in the old and new Prisma SD-WAN portal

How to go to "advanced items" in the old and new Prisma SD-WAN portal.

PA440 management interface doesn't take configuration

I used to think I knew how to do this stuff, but apparently not.  This is an out of the box configuration of a PA440 -

I set the firewall to configure system in standard mode and use static addressing.

Initial config

set deviceconfig system ip-address