General Topics

heartbeat connection

What is the best way to set up a heartbeat connection between and active and passive pair of firewall. We currently have a PA 5050 pair, in different buidling quite a distance away from one another and the heartbeat connection is through the network

GlobalProtect for User-Id Without Auth?

Hi All!

We're an all-Mac shop, but we use AD for authentication (for now). GlobalProtect "External" is working great for external access, with authentication to AD.

Now we'd like to map IP to Users INSIDE our LAN. My primary goal is to link URL F

Palo Alto Layer2 mode and brdige vlan in different subnets

Hi All

Can Palo Alto bridge two VLAN like VLAN 10 and VLAN 30 that have different subnets? or both VLAN should have same subnet?

Basically what I want, I have VLAN 10 having subnet 10.10.10.0/24 and VLAN 30 having subnet 192.168.1.0/24. Both VLAN hav

Is it possible by PA

We have a task  where users should access to Internet by username and Password.I guess it is PROXY concept but is there any alternative in PA?

Generating custom reports from system logs

Hi! I need to generate weekly reports from the system logs. We need this for compliance reasons, and we have to filter out events that are logged to the Panorama system log from several firewalls. The custom reports only allow me to choose from speci

critical general general 0 "mgmtsrvr - virtual memory limit exceeded, restarting"

Is it possible to see this critical error in an mp-log file or is it only viewable in the System Log or a syslog output?

Prevent admin from acquiring commit lock when another admin has lock

When Automatically Acquire Commit Lock is enabled on Panorama 8.0.10, is there a way to prevent an admin from creating another lock while a different admin already has one?

We use shared objects almost exclusively and with four administrators are of

Case severity

I put a case in to tac rated high and they put it on hold for 2 days so they could attend training 

How to obtain PA Virtual Firewall Image Download Link

Hello,

I'm trying to learn and evaluate PA firewall through virtual firewall for VMware, can you please advise how to obtain it?

Bashar

MineMeld: What is the difference of Share Level and stdlib name with/without value

Dear All Brothers,

I'm a new user to testing the MineMeld, but I cannot find any document to know the detail information.

In our environment testing, we would like to implement the Feed List to deny the traffic to a high-risk IP address and our tes

Cisco ISE Miner

I noticed that a new Cisco ISE miner has been released with the latest Minemeld 0.9.28. Can someone give a little bit explanation how does this miner works ? is this miner pulling SGTs from Cisco ISE ? if yes, then what does it do with the tags ? Tha

PBF with Dual ISP. Once Enabled GlobalProtect Clients no longer can connect.

We have setup a PBF to route traffic to a new ISP link we have in case our primary fails.  

Both ISP interfaces are in one virtual router.

Once we change the default route to the Backup ISP and enable the PBF to forward all traffic to the Primary unl

Routing Between Virtual Routers in Same Firewall

I have two Virtual routers in same Firewall I wanted to allow traffic between the Virtual routers, I configured  rules to allow traffic from Trusted L3 zone in VR1 to Trusted zone in VR2 and vice-verse and put them at the top of the rules and also I