PA 5220 (PAN OS 8.1.10) Active / Active not synching tftp traffic in asymmetric routing scenario

Hi Experts,

I have the following scenario: a pair of PA 5220 (running pan os 8.1.10) in an ACTIVE / ACTIVE Setup (session owner 1st Packter - session setup 1st Packet) -We have been running Active / Active since roughtly 2 Years now without any signif

SSO Error when Accessing KB or Supportcases Portal

Hello all,

Recently (these two weeks) I have encountered SSO Error when browsing to KB & Support Case pages which I don't have such issue before.

https://knowledgebase.paloaltonetworks.com/

https://supportcases.paloaltonetworks.com/_nc_external/i

Captive portal SSL decryption policy requirement

Hi,

PAN has the following document [1] which says you need to have SSL decryption in order to redirect SSL pages to captive portal.

To me it doesn't seem to be accurate. Response page [2] workaround seems to be doing the same i.e without having an SSL

CRL Distribution Point (CDP) Config

Is there a place in the PAN-OS to configure the CDP address or does it only learn it from the certificate? We have a new CDP we are testing and have added it's IP to our cert but the firewall is not attempting to contact it, only the second one. Is t

LEEF Format

Dear Team,

Appreciate your feedback as we facing challenges with LEEF format when we configure a Syslog server with a custom log to allow integration with the Qradar SIM solution.

We use the same format as mentioned on the IBM website below,

http

Dual ISP Global Protect Redundancy

Hi Team, 

I hope ye all are well. We recently worked a case for a customer that had dual ISP configuration and wanted the Palo Alto Networks device to provide redundancy for the Global Protect Portal and Gateways in the event one ISP went down. We ca

ESA | ELA When license price is increasing

Dears,

If we get an ESA / ELA let's say for 3 years, we pay the hardware, and then we would pay an initial price for support and licenses. Next, If the list price of support and /or licenses increase during these 3 years, and then we buy more hardwar

Where can I find my Customer ID or Sales Order Number to register an account?

I am trying to setup an account to create a case.  I have my serial number, but not the customer ID or sales order.  Since one of these are required in the registration process, I am not able to open a case.  I do have access to my paloalto unit onli

Error Handling in Custom Playbooks

Hello all,

To handle with different types of playbooks and tasks, is there any implementation method or best practice guide to identify errors in playbooks. If a task or subplaybook stucks in main playbook I want to get informed about it and handle

Nuevas ISO 27001, 27005 y 27005

Como las nuevas versiones de las los estándares ISO 27000 se integran en la realidad de la seguridad de la información, y como se llevaría mejor su implementación?

#ISO27000

#ISO27001 

#ISO27002

#ISO27005

Entering a Support ticket

Yealink voip phone Busy Lamp Field

I have a palo alto 220 on OS 10.1 and recently put in yealink phones that access the phone servers through our ISP. Everything works except for a function called 

Busy Lamp Field (BLF)

BLF is an acronym for Busy Lamp Field, which is a light on an IP