Reason Why Logs Are Received by SLS but Not Stored

In Strata Logging Service, ACTUAL RETENTION DAYS was shown as 0 for certain log types (such as firewall_traffic).

Meanwhile, we observed that system and dns_security logs have increasing ACTUAL RETENTION DAYS.
I understanding is that when ACTUAL RETEN

PALO ALTO BACKDATE SUBSCRIPTION POLICY

Could you please advise where we may obtain an official document or website link from Palo Alto Networks that formally states the backdating policy as described below?

Backdating on subscriptions:

• Lapsed Orders placed after the expiration date wit

Activate vsys in FW HA and impact from Panorama

Hi,

I have a cluster A/P 5220 model managed from panorama. I would like to activate multivsys capacity and started to configure little by little in a Cluster currently in service. All config is done from panorama.

What would it be the steps and i

S2S IPsec VPN with Multiple Domain Encryption

We have experiencing difficulties having more than one domain encryption in IPsec tunnel, specifically when both are in the same subnet. Only one domain encryption remains active in the IPsec phase2. There are few times you can bounce IPsec gateway a

Network connection unreachable on MAC OS newer version 15.3.2 o higher

Hi All,

PAN-OS version: 11.1.10-h1

GlobalProtect Agent version: 6.3.3-711

We experiencing on the all MAC OS with The connection cannot be established and the following error message is displayed:
“The network connection is unreachable or the porta

unwanted installation of crtex xdr

Hi,

Since yesterday, one of my customers have the software cortex xdr on their computer. But thy don't have cortex licence, and i don't work with cortex xdr. What can i do ?

Question on PA-440 Failover

Question regarding PA-440 and failover. 

How can I setup a failover in a PA-440 between two physical ports on that PA-440 firewall. For example: If Eth1/7 was connected to a cradlepoint and port 8 was a ipsec tunnel. 

What is the proper way to co

Create Custom Report for Unused Rules

Hi

I am struggling a bit here. 

I've been tasked to set up various reports on palo firewall. 

One of them is to create a custom report displaying all unused rules. 

I've tried many things. I followed this link: https://knowledgebase.paloaltonetworks.com/

Sectigo Root CA Trusted Store Request

Support with PA-440 Software

Dear all,

I have a pair of HA PA-440 with the software version of 11.2.7-h4, now I want to install the version 11.2.10-h2 to remediate CVE-(High Severity Vulnerability in PAN-OS) and (Customer Advisory on Device Certificate Renewal for NGFW Devices

PAN OS version 11.1.13-h1 is remediate or not?

Dear all,

I have this questions where I want to make sure first before doing an upgrade on my PA-820?

Recently I have gone through the customer advisory of the following: (Customer Advisory on Device Certificate Renewal for NGFW Devices in Active