General Topics

What year is it - system logs

Anyone ever noticed the system logs a month and day but no year?

Virtual IP address in HA- Active Passive Mode

Hi Experts,

I've query about High Availability Active-Passive. As we know, interface IP addresses are same on both the firewalls and when Active device goes down, secondary firewall will take over by sending gratuitous arp to switches. So switches ca

5250's failing to pass traffic after AV software update

Hi,

We are on the version 8.1.2 and If I upgrade to the latest ‘Applications and Threats’ version,  currently 8044-4859, and then upgrade AV from 2678-3175 to 2683-3180 all rules fail, and traffic drops through the default deny.

I do not see any par

Upgrade to PAN-OS 8.0.11 causes device restart loop

I performed an upgrade on a HA Pair of PAN-5220 firewalls from PAN-OS 8.0.7 to PAN-OS 8.0.11 and once the firewalls booted up they would run for about 5 minutes, alarm (red LED on device) and then reboot, over and over and over.  Even with only one f

PA-3260 High Availability

We are migrating our Active-Passive PA-500 enviroment to an Active-Passive PA-3260 enviroment.

In the PA-500 for the High Availability Control Link (HA1) was ethernet 1/7 and for the Data Link (HA2) it was ethernet 1/8.

For the PA-3260 I can use HA1-A

prevent file copy over ssl vpn

Hi all

is there a way to prevent file copy over ssl vpn tunnel. user work from connects via SSL VPN and we want to make they cannot copy file to their personal PC. we have disabled RDP clipboard but thats not enough.

regards

SSL/TLS proxy

An internal client can only make sslv3 connections while an external server only accepts tls 1.2 so the goal is to create a policy that will allow this, using the PA as an SSL proxy. 

Is this possible?  I was looking at decryption policies but I'm n

How do you completely remove a Firewall from Panorama

We are in a situation where we have over 50 Palo Altos that we have migrated to panorama over the years. Many of our Palos still have local rules on them as well as Panorama based rules. We would like to convert these firewalls to use only Panorama r

Anyone notice sometimes updating license keys on Panorama doesn’t push to FW devices? 8.0.6

Anyone notice sometimes updating license keys on Panorama doesn’t push to FW devices? 8.0.6

Filter security policies by no description

I am trying to view only security policies that do not have a description.  I have found the following links but am unable to get the output i need.  I need to show rules with no description and for all the operations i must define a valuen and all i

Captive Portal web form displaying basic auth in chrome

When I set up the Captive Portal and configure it for browser challenge, on non domain joined machines I get the following prompt before I'm sent to the web-form.  Is there any way I can get rid of this or at least get it encrypted so users aren't at

MineMeld - Feeds Authentication Verification

Hello Folks,

My MineMeld experience has been great thus far thanks alot for creating such a robust community product.

I set up authentication feeds recently and am curious where I can verfiy authentication is successful? 

Is this a Firewall Log or