How to change the password of the local firewall managed by Panorama.

Hello team:
To change the password of an administrator user on local FWS managed by Panorama.
Since they are changed locally and via CLI, the changes aren't accepted.
Regards.

Panorama 

BGP configuration help

I'm trying to set up BGP over an IPSEC tunnel between a Palo Alto firewall and a Cisco device. The Cisco side will advertise 190 prefixes via BGP to Palo Alto. I want to send traffic to those prefixes, but without manually creating address object gro

how to disable the sequence check when downloading PANOS version via Ansible

playbook - hosts: "xxxxx" connection: local vars: device: ip_address: '{{ ansible_host }}' username: '{{ ansible_user }}' password: '{{ ansible_password }}' version: 11.1.0 tasks: - name: Download PAN-OS versio...

Sales Product Specialist - Hardware Firewall

Hi,

I have completed the 20 modules under Sales Product Specialist - Hardware Firewall ; However, I'm unable to find the link to download the completion certificate.

Can anyone help me.

restore xml PAN - 440 to PAN -1420

Can I restore an xml backup from a 440 to a 1420 palo alto?

Cloudflare fronted websites breaking geo location restrictions!

Like many of you, I default block outbound traffic to sites not located in my country. It seems that Cloudflare has started to send traffic to their proxies located in foreign countries. This is causing our users to get blocked. I can add the web sit

eBGP peering over IPSec Tunnel using loopback

Can someone help me with steps to configure eBGP peering over IPSec tunnel on PA Firewall.  For both eBGP peering and IPSec tunnels, same PA FW loopback address was used.  Thank you.

Asymmetric routing assistance

I have a Meraki that has a SVI for vlan 5, 172.18.5.2 and it's trunk to a firewall that also has an SVI for vlan 5 172.18.5.1. There is a default route from Meraki pointing to 172.18.100.1 which is on the firewall. Meraki has an SVI 172.18.2.1. Serve

after Global Protect update not install network adapter

after update or install a new global protect version on windows 10/11 the network adapter doesn't install, to solve this problem you need to do some KB like:

KB Palo Alto
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZN8

Asymmetry routing and NAT

Attending a class about cloud security - AWS, Its mentioned that we can have 2 different subnets, SubnetA connected to internet gateway for ingress traffic and SubnetB connected to NAt gateway for egress traffic. An this should/have to be done how tr

Palo alto Strata Cloud Push Error

I have been getting following error on Strata Cloud when trying to push the config to firewall

[errors]: invalid auth type(Module: routed)
[errors]: client routed phase 1 failure
[errors]: Commit failed
[errors]: Local configuration size: 14 KB
[errors]:

Decryption: Client and decrypt profile version mismatch

Hi folks,

Have been seeing a lot of "'Client and decrypt profile version mismatch. Supported client version bitmask: 0x08. Supported decrypt profile version bitmask: 0x60. ' errors in the log lately. This article:

https://docs.paloaltonetworks.com/

Can we set data cap with QOS in Palo Alto for an app-id

Can we set data cap with QOS in Palo Alto for an app-id. We would like to put a datacap on the backup to 400GB per month as we have data usage to 1 TB per month. Please advise if this can be done. I am aware we can restrict only bandwidth, please adv

How to Interpret running resource-monitor avg & max

Can anyone help explain and whether my understanding is correct?

avg is the average usage % in the past 7 days
max is the peak usage % at a certain time
Is the overall DP cpu operation normal??
Because max is displayed as 9x~100, it makes people feel