test

This is a test mail message

Flood protection (SYN) blocking/failing file downloads

Hopefully someone can make some sense as I can't find it. Still a little new to PA, though, but this is something I really don't get it.

If I enable Zone Protection - Flood Protection (SYN) and choose "Syn Cookies" or "Random Early Drop" on internal a

HA pair not syncing after SSL cert change

Hi there folks,

I'm trying to troubleshoot an issue with 2 firewalls where we uploaded the same SSL cert in both FWs and now they are not syncing.

Our troubleshooting efforts have come to the following:
- Reboot management server on both firewalls

Alert for appid queue overflows

We've been facing an issue with discards due to the app-id queue overflowing - counter "appid_exceed_pkt_limit_post".

I've been trying to either have the firewall send an SNMP trap when the counter increments OR have the alert "bubble-up" to the sy

PA440 Authorization Codes

I am installing a new PA440 and I cannot get the Authorization codes

Autocommit loop error and interfaces 'connected but down' after upgrade from 11.0.4-h2 to 11.1.4-h1

After upgrading my PA-VM VM-100 appliance from from 11.0.4-h2 to 11.1.4-h1 i was met with the following errors:

- Constant failed 'autocommit' jobs spawning, similar to https://live.paloaltonetworks.com/t5/next-generation-firewall/auto-commit-stuck

NAT Config

Hi Team,

In Checkp[oint we have an option to configure the dummy IPs in the NAT and use Proxy Arp to get it working. For example. 

Source: 10.10.10.1

Destination: 10.100.100.1(Dummy IP)

Translation:

Source: 172.16.10.1(Dummy IP)

Destination: 172.17.2

palo alto networks should change option for login verfication

Hello ,

Right after  i  start using palo alto live account  i am getting other cybersecuirty vendors emails for promotions and webinar and other staff .gmail/google must be selling data 

which may hurt palo alto so

please work on something else to

Device telemetry error "Failed to send: file" caused by "certificate doesnt exist.

Hello TEam,

I am getting critical logs :-

Failed to send: file \'PA_x.x.x.x.x.x_dt_10.2.3-h9_xxxxxx_1230_1-hr-interval_HOUR.tgz

once i checked i found below articles.

Device telemetry error "Failed to send: file" caused by "Client Certificate iss

Client Server SSL Decryption

Hi Folks ;

I have a distributed software on my internal network and everyone is using it. It's like endpoint and it has a server .this server sometimes sends something to the server in the direction of the internet.
I want to look into the data that

Threat Logs

When looking at Threat Logs, I see the action is reset-both or drop. What action should I be taking with these? Anything?

Firewall creates seperate sessions for C2S and S2C

Hi folks,

I was troubleshooting SSH connection and want to know if I missed something.

The topology is following:

Client ---> PFSENSE <====ipsec tunnel ====> PA VM ==== ipsec tunnel ==== AZURE ---> Server

Client tries to establish SSH sessio

SDWAN BGP over pre-existing BGP internet.

Hi Guys. 

We're deploying SDWAN in a customer who already has two ISPs connected in his hub, and talking BGP ECMP with them, using his public ASN and his own prefixes.

According to documentation, the SDWAN plugin requires the same BGP Router ID and A

Debug process LDAP User-ID

Hi all,

I am learning about Paloalto, however there are some parts I still wonder about, the process of checking accounts and mapping accounts with palo's ip. Is there any way for me to debug and see this process clearly? Currently, I can debug the L