Resolved! How to configure gre over ipsec？

Hello 

For example, some implementations require multicast traffic to be encapsulated before IPSec encrypts it. If this is a requirement for your environment and the GRE tunnel and IPSec tunnel share the same IP address, Add GRE Encapsulation when yo

Resolved! Perimeter FW in A/P HA directly connected to Palo Alto vwire in A/A HA

the basic topology is:

Internet FW are non-palo alto in HA A/P directly connected (no switch in between) to a pair of Palo Alto in A/A HA -in Vwire mode (no Layer 3 on the Palo Alto but in transparent-zone)

then Palo Altos in A/A HA are connected to

Resolved! Telemetry error - CDL Receiver Key Empty

Hi All,

We have a client who all of a sudden started to receive the following telemetry error -  'CDL Receiver Key Empty' on PA-440. No changes have been made. Currently running PAN OS 10.1.2. They are not using CDL and are just sending Telemetry dat

Resolved! UNABLE TO PING MANAGEMENT INTERFACE FROM LAN

I have a fairly simple network setup in my LAB

Management Interface 192.168.1.1 /24

LAN Interface 192.168.100.1/24

DESKTOP IP 192.168.100.100

I have allowed all the Internal Subnet on the Management interface which is 192.168.100.0 /24 in permitted l

Resolved! Failover IPSEC tunnels with tunnel monitor keeps both tunnels active

We have just configured 2 IPSEC tunnels with a remote palo.  Both sides have 2 IPSEC tunnels with tunnel monitor and DPD configured.  For some odd reason, the when the primary tunnel is active and has active routes going to it, the secondary tunnel s

Resolved! NTP not working once authentication is enabled

Hi Guys,

NTP was working well. But when authentication was enabled below msg  is seen on the Firewall (NTP Stopped working)

NTP server is a local one using IP address (not FQDN)

PAN-OS Version 10.1.5-h1

All the other devices are syncing except for th