IPSec tunnel not working

Hi.. I have IPSec tunnel between Palo alto 820 and Cyberoam firewall. But It's not getting up. Neither Phase 1 nor Phase 2. Even I am not reachable to other end public ip. Suggest me.

LSVPN Failed Refresh Time - Where to change it?

Firewall crash after executing this command : debug dataplane show dns-cache print

Hello, After exceuting this command : debug dataplane show dns-cache print My firewall crashed and failover happened. I saw in the in the failover this error : "non-fonctionnal (Dataplane down : path monitor failed) After firewall restart and some manipulation the firewall is up again. Do you know why this command made crash the firewall...

FW stops forwarding files to WF 500

Hi, We have a PA-5250 that suppose to send files to a WF-500 appliance. Both are at 10.2.3 version. The FW suddenly stopped sending file to our private wildfire cloud. When we checked the "wildfire-upload.log" we see the following: "cancelled - first" "cancelled - concurrent file limit" "cancelled - by DP" Does anyone knows what can be the reas...

Log Subtype

Hi All, I need some information on checking the logs. I see few things like END, DENY, SPYWARE, INFORMATION etc and in the action we see it as allowed. But the access will not be working. May i know what this Log Subtype means and what information will it give us in troubleshooting? When it says ALLOW as action then why in Subtype it is Deny. Ho...

Webex issue with Mobile Users

Hi All, We are facing weird issues with Mobile users accessing the Webex Phone Services. Wifi users connecting to laptop doesn't face any issues. But when the phone is connected to Wifi users are unable to access Webex Phone Services. Not really sure if anything additinal needs to be done for mobile users accessing webex. Users on Android gettin...

Palo Alto Networks next-generation firewalls Threat prevention signatures

Hello. Please currently i'm studying the Palo Alto Networks next-generation firewalls Threat prevention module, and 'm interested in the list of the available signatures (description, severity ranking, Threat type, ). I found that threat vault can give this informations : https://threatvault.paloaltonetworks.com/ but for that we need to provid...

Syslog config on Different Port

Hi All, We have configured different port for syslog in the PA-460 firewall. Server Profile > Syslog > Name, Syslog server, Transport, Port(Here we used different port than default 514). But we can still see the syslog traffic is being generated with the default port 514 itself. Is there any additinal steps that i need to follow to get th...

Unable to create a support account

I want to register one new PA-220 firewall. I need to create one Palo Alto support account, however, I failed to create it. 1. I input my email address 2. All contact information 3. Serial Number of the PA-220 firewall 4. Order Number. I purchased it on eBay, I input the Order Number on the Invoice from the seller. After I submitted the applic...

firewall config changes

Hi Guys, Do you know how to track config changes for a specific firewall in panorama? please advise . thanks

Firewall servicing as UserID Client - limit

Good Morning, Searching for a PA doc I found a while back and my google-fu is failing me. Looking for the documented limit of clients who can connect to a PanOS device acting as a redistribution agent. I'm positive I saw 1000 at one point a few years ago, but unable to find it again. Command query to see current CLIENTs firewall 1000 is ac...

After an upgrade to version 10.2.3 h4 I got this message: 2023/03/08 20:52:23 info     general        general 0  Received conflicting ARP on interf

After an upgrade to version 10.2.3 h4 I got this message: 2023/03/08 20:52:23 info general general 0 Received conflicting ARP on interface ethernet1/4 indicating duplicate IP 172.16.0.1, sender mac 00:50:56:92:cd:0c And this address is for the other peer . The firewall is a VM300

No DPD message while peer tunnel is down

Problems with IPSEC VPN tunnel between PAN FW PLWALFWxx and the BlueCoat datacenters (Amsterdam, Frankfurt) DPD does not seem to work. Extra Information: PLWALFW = PANOS 10.2.2.h2 INTERNET FW = PANOS 8.1.x We have IPSEC tunnels between our PAN FW and BlueCoat Datacenters. BlueCoat were doing maintenance on their datapods last week. DPD on ...