PA3220 HA Trigger Condition

I have a pair of PA3220 firewalls in my environment. I configured Active/Passive for High Availability and I configured Link Monitoring condition to trigger the failover. However I'm still not clearly understand the behavior of PA HA. 

I configured a

LAB PA-200 fails 7.0.1 upgrade

I have a Lab PA-200 that I have been upgrading to the latest version of PAN OS for testing.

I have been uploading the OS file and upgrading for a while.

The 7.0 file worked fine. After the alert about 7.0. I attempted to upgrade to 7.0.1.

No joy. In Fir

Password Spraying Protection

Hi!

In my company we are using GlobalProtect VPN's as a medium to access the network.

Right now we have a blocking procedure by which if a user fails 5 times the password while trying to login, his account gets blocked for 15 minutes.

We are using this

MineMeld on CentOS 7.5 (HOSTED on AWS)

Hi to everyone.

I'm new here and I have a issue as follow:

Installed MineMeld on centos 7 in my lab environment and everything goes smoothy.

Now I'm trying to deploy on AWS server with same OS but I got the erro executing ansible-playbook.

TASK [mine

M500 shows traffic log coming from Firewall but

Strange issue here

Log collector M500  shows traffic logs from Firewall

But show logging status on Firewall does not show logs

show logging-status

---------------------------------------------------------------------------------

Upgrade to OS 8.1.3

I am currently on OS 7.1.19 and am planning my upgrade path to the best version of 8 sometime soon. In order to upgrade do I have to install the base 8 version or just download it? 

Never ending globalprotect VPN drops

Supporting VPN for people is a challenge no matter what VPN you are using but people never consider the reliabilty of their own ISP provider as part of that issue. So what is the best way to rule out the users ISP as the problem and not the globalpro

Software Upgrade

Hi,

Is it possible to upgrade PAN-OS manually without licence ?

DNS Signature Lists

Does anyone know any free External Dynamic Lists for DNS signatures to use in conjunction with the Palo DNS Signatures? We would like some extra protection for our anti-spyware protection.

Monitor of IPSec tunnel

What is the best way to monitor an IPSec tunnel on the PA, I don't see anything in the traffic logs at all just the systeme logs

LDAP is not sending framedIPAddress for GlobalProtect Static Assignment

We are trying to configure static IP assignment in globalprotect and have selected the "Retrieve framed ip address" option on the client gateway.  I've also selected "Static IP Assignment" under the Dial-In tab in AD for the users and given them IPs

Commits and Firmware Upgrades Failing

I've got a couple of support tickets open on my issues just seeing if anyone has any suggestions/ideas as Support I wait for support to help me out.

Configuration: 2x PA-5220's in HA (Active-Passive)

Code: 8.0.11-h1 (Moving to 8.0.12 per PA recommendat