I'm trying to configure HA Active/Passive on a pair of PA-5410's running PAN-OS 10.2.4. I'd like to use the dedicated HA1-A port for the primary HA1 link and the management interface for the HA1 backup link but I cannot see an option to select the ma
...
Currently, we have 2 3020s in our production network but I am also tasked with setting up two new 3410s to replace the current setup. I have gone through the initial setup and committed the admin password change. I have a current config backed up, I
...
We have some new PA-1410's which are to replace some older oversized PA-3220's. The downsize is the PA-1400 series require us to use PAN-OS 11.
Even with minimal out of the box config (management IP etc) the web UI on both units is very slow and un
...
Scenario:
Client wants to implement HA setup. Currently have 1 exisiting device.
Problem:
Autofocus license is still active in the exisitng device. No more sku for autofocus license as it is already eos since September 2022.
Question:
Will the HA wo
is virtual address mandatory for active-active HA configurations. I do not wish to use virtual address for A-A HA. My ISP does not give enough IPs
Is there a 'proxy arp' interface command (or equivalent) to allow l3 communication between isolated devices on private VLANs?
I am looking to move our DMZ to a private VLAN. I would like all ports to be isolated, but allow some communication betwee
...
Hi team
I’m new to PA firewalls and facing some WebUI related problem.
When I try to open Wildfire Analysis Report under DEVICE>NETWORK>Wildfire Submissions, “500 internal server error” is shown and I cannot check the report.
I searched through
...
Hi Team,
What is the best solution to Backup our firewalls? As we have standalone firewalls we need to make sure we have backup collected and stored. Please let me know the best way. Thanks.
Regards,
Sanjay S
In pan-os 9.1.15-h1 , I have configured hip object and also called in hip profile, The Agent submits the hip data to the firewall after that also no log is found in HIP-Match log, then even i had changed and try for hip match OS as windows that too h
...
what`s mean below article?
https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/policy/identify-users-connected-through-a-proxy-server/use-xff-values-for-ip-based-security-policy-and-logging
For non-URL Filtering logs, XFF IP logging is sup
...
After the holiday, the device only displays a Power indicator, and the reason for connecting to the Console is displayed
FIPS failure. Hardware is in lockout mode
What happened at this time!?
how to solve
thank you~
Could not understand why the CIE account was deactivated. It was setup to sync with Azure AD and one on-prem DC. And atleast one firewall was configured to use it.
Is this caused by the 3 month certificates?
Also are these certs meant to be renewe
...
Hi,
What service source interface I need to change for IPS /Dynamic/Wildfire Update ? We want to configure custom interface instead of Management interface.
Now I've configured custom source interface for "External Dynamic Lists" and "URL Updates" but
Hi,
Kindly i would like to ask, What is the RAM for PA1420, PA3430? Do they have at least 128 GB Memory?
I can't find this is in datasheet or hardware architecture.
Thank you.
I am writing to inquire about the behavior of the 5220 and 3260 Firewall series at high temperatures. Specifically, I would like to know what happens if the CPU temperature exceeds the critical threshold of 60°C for an extended period.
I have a few q
...
PavelK
on:
intrazone default
OtakarKlier
on:
Multiple L2 interface with same vlan tags
aleksandar.asta
BPry
on:
Certificate installation on device through remote system via REST API
