FIPS Mode in GCP only available with PAYG Bundle 1??

Does anybody know if VM series Firewalls in GCP that are put into FIPS Mode actually downgrades the VM Bundle from PAYG Bundle 2 to Bundle 1? I had one firewall that was deployed with Bundle 2 and it had all the licenses. After I booted that firewall

EVE-NG PA booting issue

Hi all,

I have a eve-ng laptop that i'm planning to use for practice. I have installed the KVM file and activated it as well as added it to the eve-ng lab. However, when i start the device. I get the error message "No bootable Device". This device is

Jumbo Frames

Hi,

I need small information on Jumbo Frames. If I disable the Jumbo Frames in PA-VM (VM-300) in device --- Setup --- session, will it be there any traffic impact or will firewall reboot.?

please suggest me on this,.

Thank you,

Azure HA Failover not working

Hello,

We have a pair of VM300 PAs in Azure set up in Active-Passive.  They are running 9.0.7 code with VM Series plug in 1.0.8. 

There was an issue in Azure on 19/10/20 which caused a failover and recovery (we use pre-emption).  Post this issue the

AWS interface limits

Is the AWS VM limited to only 3 interfaces or can we add 3 more?  I was reading there may be limitations associated with machine type but wanted to be sure before we went down the path of changing that.

Global Protect The network connection is unreachable

 I have trail account VM series setup with global protect config, followed youtube video.

I see that login works fine but tunnel with external gw is not coming up. see following error. anyone who can help me ?

GlobalProtect with SAML to Azure AD - selecting account when activating GP

Hello Community,

we´ve configured GP to authenticate via SAML to our Azure AD service so that we can use MFA on GP.

GP is only used by IT employees with their "admin" accounts.

So far, it seems to work fine how its configured.

The only problem we are f

FIPS mode in Azure Government

Has anyone been successful in converting their VM-series appliances running in Azure Government to FIPS-CC mode? The SSH keys I created and allowed for FW management prior to the conversion were wiped out and resetting the keys via the Azure portal d

Cross region ingress packet inspection with Palo Alto GWLB and TGW

Hello there,

Currently doing POC and deployed a  VM-Series with AWS Gateway Load Balancer/TGW mentioned here

I was able to inspect the traffic inbound traffic as my security vpc (TGW/GWLB/VMSeries)a nd Spokes VPC (Application) is in the same region. An

Timeout for some connections using GWLB

Hi All

Has anyone else had a play with the GWLB on AWS?

I've here a topology hub and spoke base on this link:

https://aws.amazon.com/pt/blogs/networking-and-content-delivery/centralized-inspection-architecture-with-aws-gateway-load-balancer-and-aws-tra

Azure Network Watcher

Hello,

i want to do a packet capture on a VM interface using Network Watcher for some traffic on our VM-300 series NGFW but our CSP advises this is not possible.  The extensions section in Azure seems to confirm this.

can anyone advise if this featu