Distribution of licenses across multiple vSys

Dear All,

           We have a PA-5200 series firewall. I have a small question which I couldn't find an answer in the public documentation, blog or discussions. My question is that how licenses are distributed among the vSys in the same firewall. Th

Offline upgrade

Hi all,

Can we upgrade palo alto offline ? i.e downloading from portal and manually loading on device. If yes please share any reference document if anyone have.

reset to the factory settings

Hi there

I have some probrem

I have PA-820 which the customer used for the pilot.

I had a connection to the device through the MicroUSB console port and try to put default pass. 

So Default settings were changed.

After rebooting the device I can't co

Issues with User reports

We are unable to see more than 6 days of user data for USER ACTIVITY reports, URL filtering or traffic logs.  OS version 10.1.6

Any help would be most appreciative.

What is the seq number in userID log ?

What is the seqno field in userID logs(below link) ? What is the range for that? Will it rollover when it reaches the maximum ?

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-description

Palo Downgrade from 10 to 9.0.16-h2

Hi Team,

I need to downgrade the Pan os from 10.1 to Palo Downgrade from 10 to 9.0.16-h2. Please let us know how to do. Its very urgent request. Any one please assist me.

Syslog server Like SpLunk Did not get Signature name

Syslog server Like SpLunk Did not get Signature name for Vulnerabilities name or Description
Like :-

1- 51100089
2- 91832

DNS rewrite

Hello,

I am using DNS rewrite for a hosted service that we are connecting to, however, the global nature of this feature is causing me some problems now as we are connecting a network we do not manage to our firewall which causes routing to fail to t

Prevent Credential Phishing with UPN (userPrincipalName)

Hi World,

I'm have my first contact with this Prevent Credential Phishing feature. With the option "IP User", because UserID Mapping is already in place, i'm able to detect sAMAccountName Username submissions. But a lot of phishing sites are focused

PA-5450 - HA1 on NC possible?

Hi folks,

I came across a situation where there are insufficient number of transceivers for the new PA-5450's HA1 and HA2 (with backup interfaces).

The HSCI ports are use for HA3 (Active/Active deployment). I have to use one SFP+ transceiver for the

pa850 spf+ interface speed setting separately

I set pa850 one spf+ interface speed to 1000M,the pa850 report commit fail, "Error,invalid forced speed/duplex for ethernet1/12,interface configuration error..."

in cli mode, the command of setting interface speed is only "set system setting ports-9-

No Internet Access or Cannot ping to global dns

Dear Team,

I have layer two switch which is connected to core switch (layer 3) and created the trunk link between these switched and the core switch is connected to my firewall and created route port to firewall from this core switch. outside my f