Factory 5220

There are two drives on the 5220. The factory reset for version 10 says to select maintsys-root1 and reset. Why not root0 as well. The device has two drives so wouldn't maint-syroot0 need to be ran as well? It looks like the drives are setup in a r

License and dynamic update query

Hi All,

I have panorama integrated Palo Alto devices and need help on below query

1) Can we perform dynamic update of Palo alto from devices itself instead of panorama. Does this practice unsync the Palo Alto from panorama ?

2) panorama having only ma

User ID version compatiblity with PAN OS 11.1

Hello,

Anyone know if the the user ID Agent 11.0.1 is compatible with PANOS 11.1.x ?

Thanks

NTP Not synced but got time-learn in Logs

Hi Team,

Ntp not synched but got initiate time-learn in logs.

>show ntp

ntp not synched, using local clock

status : rejected

reachable: yes

authentication-type: none

Have tried to set it to public server still the same. And also when try to set ma

Design suggestion

Hi All, 

I'm from network team not Firewall team. Presently we have ASA FW which we are planning to replace with two Palo's. Presently we have one WAN link going to the FW and one link to LAN router. Now how to connect two Palo's when we have one WAN

PA 5250 Factory Reset failure

Hello,

I wanted to reset a PA5250 via CLI. Nothing special. However, this was aborted at 0% with the message “Factory reset failed”. After the error, I am no longer able to access the CLI, as the message appears permanently as soon as I write somet

HA (active Passive) 10.1.X to 11.1.X upgrade path

Hi,

 I will upgrade a paranoma VM in 10.1.5 and a pair of managed firewalls in HA Active passive from the same verstion to 11.1.X

This guide indicates I need to go through every feature release when upgrading HA firewalls:

"When upgrading HA firewalls a

IP List limitations

We would like to integrate with AbuseIPDB after seeing numerous global protect VPN logon failures.  We've greatly slowed this process down but it was a manual process of pulling reports to a list and we have an EDL download this list on a regularly s

Shared Folder Credential Problem with NAT

Hi team,

We have a problem with a shared folder, the problem is:
Client 21.172 connects to 21.174 through a shared folder, without credentials.
When NAT is activated, and the same shared folder is opened, it asks for credentials, and does not allow the

Clientless VPN issues

The customer is experiencing issues with the clientless VPN on PAN-OS 11.1.5-h1. Previously, on version 11.1.3, it was working smoothly. The issue occurs when the customer tries to log in to the GlobalProtect portal—it redirects to the clientless VPN

Service l3svc restarts in loop on PA-1410

Hello,

In my new PA 1410 I've noticed that the l3svc service restarts in a loop.
The PA-1410s are in version 11.1.4-h7
I restarted the l3-service ( debug software restart process l3-service ) with no change.

Also restarted the mgt plane (also the fir

URL filtering response Page

Hi Friends,

We have a requirement regarding the URL filtering response page. Currently, when a URL is blocked due to a predefined or custom URL category, the URL blocked response page is displayed. However, if the traffic is denied through the QUIC