Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Can someone explain to me the rational behind allowing an interface to drop and having the link-change log a down state and yet have it be INFORMATIONAL severity level? I saw an old question about this and it seems somewhat ridiculous? We had filter
...
hi guys,
I searched through and it looks like it's an know issue that speedtest.net is not correctly identified by app-id
I use app -default setting on the policy
The policy cannot really see speedtest.net's traffic and identifies the traffi
...
Can anyone please tell my why the firewall is showing a private IP under IPSEC TUNNELS -> Tunnel Info?
Hello all,
I've been reading on untagged subinterfaces and I'm not sure this scenario would even work for what I want to do. Basically I want to segment different two zones coming over the same interface. I usually accomplish this by creating a vir
...
Software Version 10.1.8-h2
2023-03-17 16:18:48.037 +0000 phase1 completed
2023-03-17 16:19:35.133 +0000 start phase2
2023-03-17 16:19:35.133 +0000 Configuration not changed.
2023-03-17 16:22:41.815 +0000 Warning: pan_lacp_worker_poll(pan_lacp_thread.c:6
I am trying to configure a PA850 to send trapns to Solarwinds for monitoring. I have configured the SNMP trap and am currently in the "SNMP Setup" page. In regards to views, how do I find the OID and the MASK for it. Is that required or it there a wa
...
Hi,
I have searched and found similar posts but none seem to have a working solution for this...
I have a simple security policy to deny access to a VM located in the 'trust' zone if it matches a user in the user group created on the AD server.
I've
...
Is there a way to add more than one DNS suffix to DHCP?
I know in Mac OS X I can add multiple search domains, but I don't want each user to have to do this, nor type in our long domain names each time either.
Thanks!
So we have 'Use X-Forwarded-For HeaderEnabled for Security Policy' enabled, and are using it policies.
The threat logs show the real Source Country but no address under X-Forwarded For IP Column. Although when exported to CSV many logs show the real
...
Has anyone had success connecting Avaya IP phones via VPN to PA devices? I am able to complete IKE Phase 1 authentication, but fail Phase 2 due to local/remote proxy IDs not found:
'IKE phase-2 negotiation failed when processing proxy ID. cannot fin
...
I am attempting to setup an IPSec VPN tunnel to connect to remote Avaya phones. I am not sure if I am doing it correctly. I've set up a new IPSec tunnel and configured it to use dynamic IP for remote peers. I am not sure if this is correct or not. It
...
Hello,
We are new to Palo Alto and a bit confused about the firewall behavior because it peaks every 10 minutes on the MP. There is a process on "show system resources follow" that is called "monitor" that is on 99-100 % of CPU usage. Unfortunately
...
Hello Community,
i have a strange problem regarding VPN.
Here is my setup:
HQ:
- PA3020 vsys2 connects to a 100/100Mbit WAN. (local, stable provider)
- Public IP is configured directly on a interface of the PA
- Speedtest from local network in HQ commi
...
Hi community.
I need to know where I can find the installer of Cortex XDR 7.8.0.2405 for Mac because I have some devices where that old Cortex version is stuck and I can't delete it successfully. Or, if you have another method that can remove that
...
is this the instructions to use to get more logging space on panorama VM running in panorama mode?
https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/set-up-panorama/set-up-the-panorama-virtual-appliance/expand-log-storage-capacity-on-th
...
reaper
on:
Tunnel Monitoring
reaper
on:
Global Protect need to ask for password all time we connect
reaper
on:
GlobalProtect Android version 13 issue
