Recommended PANOS version

Hi Guys,

I would like to know if there's any resources that provide information about what recommended versions of PANOS to be upgraded to or from? Also, what caveats one might face during the upgrade process?

Thank you,

Dennis

Layer 2 v. V-Wire

Anybody think of a situation where I would prefer a layer 2 connection over a vwire in a basic setup? i.e. [users]--[core switch]--[PA]--[router]

Right now I have:

([switch] --VW--[PA]--VW--[router])x4

Moving (becuase of lack of PA support for LACP L

Skype on PAN 8.0

Hi 

Has anyone had issue with Skype on PAN 8? This week we needed to bypass decryption of *.skype.com to get Skype to work on the Apple iOS Skype app (consumer Skype). Our setup inspects all ssl traffic apart from the finance /banking / health catego

Panorama - search and replace?

I'm kind of new to PaloAlto firewalls and I am looking for guidance on how to help with a little situation. As part of our migration, we had to create a bunch of security-zones that parallel what is on the system already. It was a cludgy, but functio

Failover (Active, Standby) 2 WAN Tunnel IPSEC

Hi All Expert,

I have a small question to ask you.
I have plan to use PA for this semester and try to find what PA can do.

I have more than 10 Partners dial Site-to-Site VPN with me.
One of 10 Partners have connection issue with my primary link, so PA wi

Change PAN Education Email Address

Hi All

My current work email address is used to log in to support.paloaltonetworks.com (super user, can add/remove users, see all our assets etc). It is also linked (not sure how) to my PAN Education login/transcript via SSO. 

I will be leaving my cu

PAN for NSX 6.3 and vSphere 6.5

Does anyone know if NSX 6.3 and vSphere 6.3 are officially supported for PAN yet? I looked at the release notes for 7.0 and 7.1 and they are both stating vsphere 5.5/6.0 and NSX 6.2. I have a POC lab with NSX 6.3 and vSphere 6.5 that i was looking to

GlobalProtect Login Portal Redirect to 443

We're trying to find a way to redirect people trying to hit our Globalprotect login page on straight http to redirect to https seemlessly.  We thought we had this working with an inbound NAT policy with destination translation looking for original se

ikev2 VPN

Is it possbile to set up a VPN using ikev2 and if so is there a document of the steps to create it?

Issue with traffic over ipsec tunnel.

PA-3020 ,7.1.8. PA  has 3 tunnels with 3 sites.

Site1 - PA200 on other side tunnel traffic fine. ping from site1 to subnet behind Pa3020 works with 1472 mtu and fails after

that.

Site2- Tried to migrated from ssg140 to PA-3020,other side Cisco 871. Tr