Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi,
We are experiencing an issue with the PA-220 network graphs displayed in one of our sites.
We know that the router in front of the firewall delivers a 90 Mbps (Megabit per second) max throughput. This measure has been verified extensively.
...
I am troubleshooting an issue where I need to bring down the IPsec tunnel manually, what is the best way to do this in GUI or CLI?
Thanks
Hi People!
I'm using PanOS 10.2.2 on a PA-440. I have created a few LocalDB users and added them to a group. Then i've created an authentication profile and added this group to the allow list (also tried with "all"). Since these local users are also
...
Hello everyone,
I have observed that when a failover occurs on an active/passive cluster the IPSEC tunnels to AWS all go down and take a time to recover.
I have verified that the traffic goes down and does not communicate for a time of about 5-10 min
...
Hello,
We are currently running pair of 3260s in HA. When the IPsec tunnel goes down on primary FW, we get alerts from Solarwinds that both tunnels are down on primary and passive Firewalls. Is this normal condition? If so why would I receive alert on
Hi, Why anti-virus default profile is read-only? cannot modify the settings for default profile using superuser account.
Anyone can please advise, thanks!
Need help with understanding output for this.
show system state filter env.* | match thermal
env.s1.thermal.0: { 'alarm': False, 'avg': 55.000, 'desc': 6220 Core Temperature, 'hyst': 4.500, 'max': 95.000, 'min': 5.000, 'notified-avg': 55.000, 'samples
...
Hi Guys,
I have Panorama with a few device groups; how do I clone one of them from GUI so I can do testing without impacting a production device group?
Thanks
Hi.
Is it possible to login to the passive device in HA without using mgmt port?
Is console port only approach?
Is there no approach to login to the passive device in ha except mgt-port or cosole-port?
plese tell me...
Hi Guys,
I have a template in Paranoma and I pushed it down to a firewall, the firewall could only get 80% of the template. The Panorama didn't complain as there were no error messages after the push.
The firewall is currently missing interfaces'
...
Hello all,
I am using PA-440 on the PAN-OS 10.2.3-h4.
Due to performance degradation issues, hardware session offloading and hardware udp session offloading was changed to false through the following commands.
I am trying to make an address group that consist of wildcard addresses but I get this error:
vpn30-wc -> static 'vpn30-v110-wc-1' is not a valid reference vpn30-wc -> static is invalid
vpn30-v110-wc-1 is an IP Wildcard
vpn30-wc is a new empty a
...
The loopback interfaces clearly are assigned to security zones. Version 5.0.1
Hello,
Does anyone know what's the maximum routing table entries is on a PA 5020 running 4.1.10 ?
I ran into a limitation with a PA 500, where it exceeded > 1K+ routes and had to change how routes are re-distributed on the routers.
Thanks in advance.
Hello all,
we have recently started using interactive boards that can display the screen of a connected client in various ways: airplay, chromecast, etc. and also by means of a manufacturer's own tool.
The tool first creates a list on the client of a
reaper
on:
Agentless User-Id integration
reaper
on:
Required PAN-OS 8.1.25-h1 for PA 3060
reaper
on:
IPSec Phase 1 tunnel not connecting
