Next-Generation Firewall Discussions

GlobalProtect enforcer exceptions not staying in registry

We have GlobalProtect with "Enforce GlobalProtect" enabled and a set of IP and FQDN exclusions. Additionally, the captive portal exception timeout is configured to 900 seconds. However, we’ve encountered an issue when users are connected to GlobalPro

PAN OS integrated Use ID agent Server monitoring Status Showing "Access Denied"

Hi Team

Pan OS Integrated User ID is connected with one of our DC server with out having any issues while configuring in the other DC servers we are getting the "ACCESS Denied" in the server monitoring.

While seeing in the 

>less mp-log useridd.l

Zone protection question

Hi Team,

I’d like to add an IP to be exempted from zone protection. Is this possible on the firewall?

How we can achive this please suggest

issues with traffic passing through vWire

hi guys, i'm trying to set up a new Palo Alto firewall, a PA 440, for a customer. But they want minimal impact on their network and don't want to change anything, so i proposed setting up a vWire so they change nothing and can benefit from the inspec

Failed to download due to Empty file returned by update server. Please try again later.

Failed to download due to Empty file returned by update server. Please try again later.

HW : PA440

sw 11.2.4-h1 seeig this error when trying to download 11.24h4

It worked on another firewall with same SW Tried with update server :

updates.paloaltonetwo

GP VPN / Routing

Hi All, 

I have a question:

So we have a Parent Company name A and we have an existing IP SEC S2S tunnel and we are forwarding the routes for Server and Voice.

Now we have a new client on our Company, and that client consist of 3 users only

Power Adapter and Cable for PA-460 Firewall

Hello,

I would like to confirm the type of power adapter and cable used to power the PA-460 firewall. Specifically, I need to know the connector type on the AC side of the adapter and whether it uses an IEC-60320 C5 or a different standard. This info

Errors and commit warnings after 11.1.2-h3 upgrade

Hi,

If anyone could shed some light on the issue below, it would be greatly appreciated. Since upgrading my PA-440 to 11.1.2-h3 (preferred version), I am seeing the following two issues:

1. Every 5 minutes, there is a system log error:
Failed to perfo

HA Configurations in Strata Cloud Manager (SCM) with NGFW.

Good Day fellow techies

I am writing this article because I was very confused at the SCM tech writing of the Admin Guide, in regards to HA.

I REALLY tried to follow along with the steps, but could not understand.  I think I am not the only one.

S

The required '11.1.0' base image must be loaded before this image can be loaded

Hi Team,

My Panorama device is currently on Software Version 11.0.5, and I am looking to upgrade to 11.1.4-h1.

In Panorama, I navigate to Panorama > Software, and run 'Check Now' to refresh available updates. I can see that 11.0.0 (base) and 11.0

Palo alto firewall incorrect time

Hi Everyone,

PA-440 appliance running on 11.2.4 firmware

Is anyone experiencing issue in time being incorrect and keeps going back to wrong time and date?

Already tried synching it on NTP server and it shows on CLI that it is synched and reachable howev