Question regarding Panorama HA state/priority settings

In the following link, it is stated that an Active-Secondary Panorama can perform all the functions of an Active-Primary Panorama, except for two things, one of them which is the ability to perform "manage firewall deployment functions" such as lic

False-Positive on Comodo

Hi There,
Not sure what's the right place to report this false-positive.

I would like to draw urgent attention of Paloalto Networks staff to resolve following false-positive on one of Comodo Internet Security files:
Virus Total (1/64)
https://www.virusto

URL category not effecting to all traffic passing through security policy

we are facing problem with PA 7.0.7 version , custom url category is mapped to security and certain URLS are allowed . when traffic passes the policy some of the traffics are allowed and then it hits the deny rule . The size of the packet becomes les

Blocking Hexa Protocol (Hexatech VPN)

I just became aware of this yesterday, but we were seeing a rise recently in "unknown-udp" traffic on our Palo Alto Firewalls and have discovered what it was.  The amount of traffic was significant - always used the more bandwidth than anything else

SAML ADFS for GlobalProtect

Hi,

Is someone able to shed some ligh on the below.

1. Can SAML be used to map to an LDAP group, if so is there guidance?
2. Does PAN support using SAML AND prelogon/alwayson with GP?

Thanks

VPN Palo Alto - Microsoft Azure. Slow transfer. Not reaching internet by this tunnel.

Hello,

We are having a annoying issue :S We have configured a tunnel routed-based between PA (7.0.6) to Microsof azure. The tunnel is up but we are detecting several problems. 

1) The transfer speeds are very low, fluctuate and are nothing stable

URL Filtering response pages never appear

Hi, 

My URL filtering response pages never appear, even the default ones.

Is there anything to do to activate them ? I always have the "This site can’t be reached" message with a connection reset.

Thanks

Syslog miner not recieving the syslog messages

HI All,

I have used the below link to configure Syslog miner, but metrics are not showing up in stats.

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262

I have tried to troubleshoot  using following discussi

Clear Config on new Palo

Good Morning. Is there an easy way to clear out all configuration settings on a new Palo without having to go through the CLI to clear each item individually, or doing the same in the GUI? It is time-consuming to have to go in and delete the default

NAT very slow

PA-3020 Software Version 8.0.4
I have several policies U-Turn Nat and Destination Address Translation in the DMZ
Three times a day the acces to these Policies becomes very slow
If I send a ping to one of these servers the time is very large the 1000 to