PA-220 Not Decrypting any HTTPS Traffic even after I have followed ALL the Palo Alto Live Videos

For some reason SSL Decryption is not working on my PA-220 - I have followed many many many of the palo alto instructions to try to get it to work but some how it is still not working - the PA-220 is simply not decrypting any of the Https Traffic. I

Stuck in Failsafe Bootloader. what now?

My PA-820 is stuck in failsafe bootloader mode.  what are my options now? I am no longer getting the option for MAINT mode either.  If I let the system boot on it's own I get the below and it just keeps rebooting.

Welcome to the PanOS Failsafe Boo

Asymmetric routing with the same interface

I have to deploy the WAN firewall which have 2 WAN link. The requirement was egress traffic from the firewall to WAN will be send to Link A but the response traffic will be ingress from the Link B. 

If I've set both of these interface in the same zone

Site to site VPN help :(

Unable to make VPN work. Both "IKE Info" and "Tunnel Info" are red light in IPSec Tunnel.

The peer is a Juniper vSRX.

Normal configuration with trust, untrust and VPN zone in both firewall. Each zone has its own subnet.

Both firewall can ping each other

VM-Series firewall on VirtualBox

Hi,

I know that VM-Series firewall requires VMware ESXi running vSphere 4.1 or 5.0.

But I don't have VMware right now on my laptop and only I have is Oracle VirtualBox 4.2.6 - just for tests and presentations (not for commercial purpose)

On VirtualBox I

Clientless VPN

Hi All,

can someone provide configuration example for Clientless VPN access through GP portal...
I was already used configuration steps explained on this page, but seem that it not helped in my case. I'm able to authenticate and open portal landing pa

Dynamic Routing on MPLS network with IPSEC VPN as backup route

We are new to the Palo Alto community and are looking for some advice as the best way to accomplish our networking end-goal.

We have several remote offices that are currently connected to corporate using an IPSEC VPN over the internet.  Each site h

Delete inherited zones

Hello,

I'm creating locally a lot of new zones on a 3020 firewall, but committing it says the hardware limit is 40.

Currently I inherit 9 zones from a Global Template from Panorama, but I don't need that zones.

I cannot modify the Global Template. Ther

Application match... Sophos-live-protection to 8.8.8.8

Our logs show a numebr of connections from our DC's to port "53" application sophos-live-protection...

That's fair enough, I understand the concept of what sophos are tryign to do with this.

What I don't understand is why the destination is 8.8.8.8 a

mgmtsrvr - virtual memory limit exceeded, restarting

Has anyone seen this before?  I'm looking for feedback on whether or not this is directly related to the VM Panorama sits on?  This was the decription of an alert I received at 12:30EST today.  Sure enough, Pano was rebooting.  Any information provid