Port fowarding from internet to inside server

I am trying to setup port forwading from spacific internet IPs to a server inside the firewall. This is for RDP access. We are using port 9999 to hit the firewall and translating that to 3389. Here is the NAT and Security policies I have.

When I lo

Recommended PAN-OS for 5220

We are currently running version 10.2.9-h1 and i would like to know what the prefered recommended version to upgrade too?

Also why does palo alto deny me access to this information when i have an account with them?

I upgraded to 10.2.11 but thi

Request to Remove High-Risk Status and Update Website Category for ice-aec.com

Dear Palo Alto Networks LIVEcommunity Team,

I am writing to address a concern regarding the domain ice-aec.com, which has been flagged as high-risk by Palo Alto Networks Unit 42 Security. After conducting a thorough review, we believe that this cla

Export Information for a PA-460 Unit

Could someone at Palo Alto please provide the following information for your PA-460 unit (3 items total):

1. ECCN (Export Control Classification Number)

2. Harmonized Tariff Code (HTS Code)

3. CCATS information for this product - we need to see if yo

broker vm

Hi, 

i want to sign in broker vm the first time. but default password  !nitialPassw0rd don't work.

can you help me with his problem.

Thanks.

Paloalto (HA) and Fortigate (HA)

Hello All,

what is the recommended connectivity for if there 4 firewalls and HA is active/passive on both devices:

PA-active connected to (Fortigate active and passive)

PA-passive connected to (Fortigate active and passive)

Thank you  

Find tempalate name to which a certificate is associated with

Hi All

Can any one please tell me the api code or curl command to find tempalate names to which a certificate is associated with. Generally we do this via global search option but can't find anything to do on cli or via api.

GlobalProtect VPN on Win11

When I attempt to connect to a GP VPN site I get an error "Can't reach this page" - but only on my Win11 laptop.  I used to be able to connect with this PC but not anymore.  Tried removing all the updates - still no luck.  I have 2 other laptops, bot

Pushing dynamic updates from Panorama to firewalls or download direct to firewall

Looking for advice on best practice regarding dynamic updates (AV, IPS, WF) when managing firewalls from a Panorama. Currently we are download and pushing these dynamic updates from Panorama to about 15 firewalls but will be managing more firewalls f

Unsupported cipher. Supported client cipher bitmask: 0x00000000

Hi,

have a decryption policies for inbound ssl decryption to a webpage. Therefor I have included the private Certificate.

At decryption monitor there is a message:

( error eq 'Unsupported cipher. Supported client cipher bitmask: 0x00000000. Supported de

Migration FW Paloalto model from 3020 to 1410

Hello team,

I need to migrate a cluster from FW model 3020 to 1410.

Can any of you tell me the best way to change it?

I have the 3020 configuration in XML in version 9.1 but the 1410 the minimum version required is 11.

Can you help me?

Rega