CPU issues on PA-3410

Hi Team,

Need some help with respect to below query:

Issue - We are using PA-3410 in our environment. We are monitoring this device using Logic Monitor tool. Our monitoring team states that they monitors CPU and memory utilization for Palo Alto d

GlobalProtect portal allows a user to download the software without logging when we manipulate the URL

when we manipulate the URL and change the path of URL:

       Form:

                https://{IP/FQDN}/global-protect/login.esp

      To

                https://{IP/FQDN}/global-protect/getsoftwarepage.esp.

 it's return the download page, please can

SD-WAN BGP Configuration via Panorama Plugin specific prefix

Hi guys,
we have one core Palo Alto firewall and round about 50 Palo Alto firewalls at customer side.
All firewalls are managed by one Panorama and on all devices are running PanOS 11.1-4x. The sd-wan license is activated and the sd-wan plugin version

User-ID Self-Signed Certificate expires in Agentless User-ID?

Hi, We've been following the advisories on the User-ID Self-Signed Certificate expiration and we're not entirely sure whether it will affect us if we have Agentless User-ID. Thanks!

Captive Portal

Hi Folks!

Do i require license for cative portal?

NGFW

SSL policy rule and needed match application values

Hello,

I have a quick question in regards to SSL decryption and policy match values.

If I have SSL decryption, and I want to allow 'facebook-chat' for example, I know a policy rule with the app facebook-chat and it's dependencies 'facebook-base,mqtt-

PAN-OS-11.1.2-h3 - No incomming traffic after upgrade

Hi,

We recently upgraded our Palo Alto 1410 Firewall to PAN-OS-11.1.2-h3 from PAN-OS-11.0.4-h1.

After Upgrade there was no incoming traffic from external networks. There were no hits or logs showing incoming traffic.

Internet Outbound traffic was g

Observing Internal error logs on Global Protect SAML Auth

Recently observing below logs very frequently 

"Reason: Internal error, e.g. network connection, DNS failure or remote server down. auth profile 'Azure', vsys 'vsys1', From: x.x.x.x"

Any idea

GlobalProtect

Please check the Max Decrypt session value of PA-3410.

Hello

I'm curious about the number of SSL Decrypt sessions for PA-3410.

I could see this on the product comparison site before, but I can't see it now.

A customer using Decrypt wants that information.

It's not even in the spec sheet or data sheet, where

Package manager upgrade failures to certain sites

Hello,

We have a case open for this that has been turned over to internal dev but I thought I would post this here to see if anyone else was experiencing this issue.  This on a 5260 running 10.2.7-h3.

We been tracking down this issue for a long tim

Rule UUIDs Always Change

Greetings Community! 

Apologies if this has been answered in a previous thread- I couldn't find anything... 

When exporting configuration files from PA-3220 I have noticed that sometimes the rule UUIDs are different than the previous config dump

BGP Route Advertisement /Export Rule

Need some help with advertising specific routes over BGP and hoping someone can help.

I have a site-to-site tunnel setup between AWS and my on-premise PA Firewall. I am receiving routes from AWS over BGP as expected. No issue there and I am able to

Global Protect Custom Setup

Hi Guys 

I have 5 separate GP Captive Portals and I want to make a custom setup for all of them separately. I will deploy them separately from the network.

Can we change the global protect msi package?

I heard it can be done from Expedition, is it