Change panorama pushed virtual-router settings from firewall cli.

I have to change the BGP local-as on some of my firewalls.  The virtual router settings are set from Panorama (part of the template) so I tried using the override command like this but it didn't take.  "Invalid syntax".  is this not a possibility to

Clientless App feature enable BUG 8.1.3

The only I can describe this configuration is that is is a bug. I do not see any reason why such a feature would exist and not be clearly documented.

Issue: When commiting that change after deploying a GlobalProtect Clienless app a warning would appe

Global Protect, use custom port for portal, followed the tutorial on paloaltonetwork

Hi,

I followed the tutorial : How to Configure GlobalProtect Portal Page to be Accessed on any Port but it's not working.

When I connect using browser I get an error. I see in monitor that the port is accessed and I see the rules for the nat as well,

GlobalProtect agent can not connect to my internal Network

Hello,

After correctly configuring global protect VPN on the firewall, and installed the agent globalprotect on the remote machine, when I am in connected mode with the agent I can not connect to my internal network not even send a ping, I checked the

logical interface packets drops

Hi,

we are experiencing this issue that we are troubleshooting from a couple of days. we have done all our checks WAN and LAN side however there is a paloalto firewall between WAN routers and core switch in a Vwire mode with an any-any rule. the only

HA/sync bug in 7.1.16

Has anyone heard about about a bug in the code of the os 7.1.16 which causes HA and sync to fail?

Ask about by license for PA-500, Renew license after End-of-sale?

Dear All,

 My company device is PA-500, I'll be End-of-Sale Date at 31-Octorber-2018. But it's license will be  Expires at April ,2019.

So how I can do to renewal the license? Do I buy the license after End-Of-Sale ? OR Can we renew the license befor t

authentication problem

I have spodaric problem with authentication, and I would like to know if is there a windows command tan can be run to force renewal or authentication when  fail?

I get next message logs:

could not find auth server id vector dor LDAP-auth-vsys1-mfa

MFA

Problem routing traffic from ipsec tunnel to ipsec tunnel

We have two PA820 boxes PA#1 & #2, both are connected via IPSec and the traffic flows without any problem
We have a TMG server to which PA#2 is connected via IPSec and traffic flows without any problem
Now we want PA#1 to be talking to TMG server via P