Application Incomplete For One Site But OK at Another

I have an IPSec tunnel with source address NATting to a partner. 443 web traffic from site A triggers the IKE and the IPSEC-SA session. In PAN monitoring the application is correctly identified as SSL and in my browser I pull up the site from the par

VPN Access

How do you configure the globalprotect VPN's so they won't route on the internal network but will only let users access it from outside the internal network

Upgrading 7.1.5 HA Pair

My HA 3050 pair is currently running 7.1.5 and I am planning an upgrade spree.

The upgrade process that I read seems straight-forward. My main concerns are with IPSEC tunnels and GP clients.

My options right now are upgrading to 7.1.9 or just going t

HA PANs

Hello,

I am trying to design a new solution in our network infrastructure. Here's are the requirements:

-  Single ISP -- Two active Internet circutis --- (Corrected from Two ISPs to a single ISP)
-  Current topology: Two Internet circutis connected to

HIgh end ports in palo alto

Hi All,

Does anybody aware of an application that I can use to add high numbered ports in Palo Alto Firewall.

Please clarify PAN-SA-2017-0012 PAN-OS affected

Hi,

Reading the Security Advisory PAN-SA-2017-0012  product affected listed PAN-OS 7.1 and 8.0.    Can PAN clarify the specific version of PANOS 7.1.x and 8.0.x affected ?

Thanks,

E 

PAN-DB URL Filtering activation problem

Hi All!

i am trying to activate URL Filtering from PAN-DB, but i have problems.

I upload the license manually and i haven't error, but when i try to download the database this error appear:"URL database download: not available."

Then i do the "Retrieve

A/A Cluster Routing problem

Hi,

I´ve a A/A Cluster Setup, where the firewall 0 is primary and the most traffic goes that way.
We use OSPF for the routing over the VPN tunnel and some tunnel are configured with a better metric over

the secondary firewall. We want to make some load

Log Field

where have the document that  explain the each log field in traffic log and threat log?

HA PA-5050 Out-of-Sync for 6-7 hours.

Hey Experts,

l am looking for some advice. One of our HA pairs was out of sync for about 6-7 hours. Every time l tried to sync manually from active>passive it was failing. Got some logs from the active box and can see a bunch of errors but not sure w

WildFire - how to configure the frequency of file submission to Wildfire cloud for analysis?

Hello Everyone, I did not manage to get this information in other online resources and in Wildfire -> General Settings does not seem to have this option. Hence I am asking for your help on these questions:

1. How can I configure the "frequency" of my Pa

Setting up Policy Based Forwarding with two ISPs and 1 VPN tunnel

I've already read the articles in the live community for starters. Never setup a branch office before. This new branch office has 2 isp's and 1 VPN tunnel from there to HQ. I have the firewall completely configured already for using 1 ISP and the 1 V

Security Policy Listing

Hello, 

What’s the best way to generate security policy report to only show the listing of all the Security Policy rules  on a PAN?

I used the custom report and selected Source Zone, Destination Zone, Rule, and Application(also, played with  adding o