The required '11.1.0' base image must be loaded before this image can be loaded

Hi Team,

My Panorama device is currently on Software Version 11.0.5, and I am looking to upgrade to 11.1.4-h1.

In Panorama, I navigate to Panorama > Software, and run 'Check Now' to refresh available updates. I can see that 11.0.0 (base) and 11.0

Palo alto firewall incorrect time

Hi Everyone,

PA-440 appliance running on 11.2.4 firmware

Is anyone experiencing issue in time being incorrect and keeps going back to wrong time and date?

Already tried synching it on NTP server and it shows on CLI that it is synched and reachable howev

failed auth

2025-02-20 16:36:56.159 -0800 debug: pan_auth_cache_user_is_allowed(pan_auth_cache_allowlist_n_grp.c:789): user "jdelossantos" is NOT in allow
list of auth prof/vsys "AD_AUTH/shared" (vsys in request "shared")
2025-02-20 16:36:56.159 -0800 failed auth

Firewall with L2 Interfaces and dual uplinks to switch.

Question on L2 Interfaces and internal VLANs.  We are connecting a 220R with all interfaces in L2.  We have 2 gateway switches so this firewall with have dual uplinks (one to each GW).  How do I apply a VLAN to these interfaces?  Do I even need to?

GW ARP reply..

MS Teams Aplication Performance Issue –Intermittently

Hi Team,

We have received reports from three customers experiencing intermittent performance issues with the MS Teams application, specifically with audio and video not functioning properly.

Troubleshooting Steps Performed (Palo Alto Firewall):

✔ Rem

How can I block browser extensions (VPN)?

Greetings and happy new year.

I have seen that from my internal network people use VPNs that are installed as extensions in the Google Chrome browser (veepn) to circumvent the URL Filtering of the FW.

Does anyone know how to block these extensions?

I

VM-Series Esxi and KVM

Hi guys

I have received a 30-day trial vm series for ESXi and KVM to my official email ID to check its features, we have deployed it in our virtual environment in ESXi and KVM, but it shows an error during the login as shown in the screenshot, I have

Upgrade path from 10.2.3-h14 to 11.1.4-h7

I have a 5410 with current version 10.2.3-14 that is HA and would like to upgrade to 11.1.4-h7.  What is the path and how many reboots?

Are there any cases where certificates are marked as UNKNOWN other than when using CRLs with IDP extension?

Hello everyone,

From the following knowledge, I understand that in CRLs with IDP Extension, certificates not listed in the CRL are marked as UNKNOWN.

PAN-OS Behaviour for CRLs with IDP Extension: Certificate marked Unknown" if not listed in the C

Static route path monitoring using a destination within a different virtual router

Hi,

Is it possible to set up path monitoring for a static route using a destination IP address in a different virtual router?

My scenario is within virtual router 'A' I have a static route with a destination of a NAT range pointing to an interface to

potential issue with RADIUS traffic passed through Palo devices

Hi all, 

There is a good chance this is not in fact a firewall issue at all.

But I just wanted to ask people who have more experience than me. 

Has anyone experienced an issue where despite RADIUS traffic being passed through a Palo appliance success

PaloAlto 5420 Recommended 10.2. PanOS Version

What`s the PanOS Version recommended for PaloAlto 5420 Recommended in 10.2