Minimum Code for PA-415/445

Hello, looking at the PA-415 for a small office and I can't seem to find the minimum code required.  The datasheet shows performance results using OS 11.0 but there's nothing to indicate if you can use 10.2 code.

TIA!

security policy in monitor mode only

Hi,

This is a new Palo Alto deployment.  We used to have Cisco FTD as IPS and now we are replacing with Palo Alto.  We have 3 devices (router and SDWAN) that we configured using vwire so all traffic to the DC would pass through the Palo Alto inspec

Query for routing table

Hello, everyone.

One query.

In Palo Alto Firewalls, what is the correct command in the CLI, to "validate" if I have or don't have a route, to reach a particular destination?

The correct command is "show routing route" or "show routing fib" ???

What i

Cortex XDR - All Actions export

Greeting to all!

I have faced an interesting use case with Cortex XDR and I haven't seen solution to it ever before. 

Short description of the situation - We have a successful vulnerability exploitation event. We know for sure, that it was exploited an

The machine on which Cortex XDR agent is installed is not showing the Windows key (Start Menu) option.

How solve this problem.

DHCP client support for IPv6

Hi,

You can't configure an Ethernet Interface as a DHCP Client for IPv6 like the IPv4.
Does anyone know this will be supported in the (near) future?
I can't find anything about this.

IPv6 on public interface

Dear all,

I'm ttrying to get IPv6 up and running but so far without much success.

My ISP assigend a /48 range to me and they are saying I need to use DHCP. AFAIK, DHCPv6 is not supported, but NDP is.

Assume my IPv6 prefix is

abcd:1234:5678::/48

So I ena

GP Compatibility on Windows Server

Hello, everyone.

Does anyone know if you can install the Global Protect agent, on Windows servers, such as 2012, 2016, 2019????

Is there a documentation that tells me and confirms this?

I see in the Palo Alto Firewall, that the computer does not give

SMB traffic identified as active-directory

From one of our management servers  (Windows Server 2016) SMB traffic is identified as active-directory, but from user clients it's correctly identified as ms-ds-smbv2. Anyone come across this? We have several storage solutions (NetApp filer, iSCSI,

Factory Reset

I was in the middle of setting up a PA 850 and in the end needed to conduct a factory reset. I issued the commands to put into maint mode and was able to log in with maint@ip and the serial number as the password through putty. I had to step away for

Virtual Panorama upgrade do I use "m" or "pc" platform?

Virtual Panorama upgrade do I use "m" or "pc" platform?

Clarification on App Rule - I thought I understood this

I recently moved a firewall into being managed by Panorama.  I setup an Application rule specifying the application as PANORAMA which includes the ports necessary (I assumed) for Panorama communications but the firewall could not be added successfull

Commit Timed Out from Panorama

HI  Team,

We did a push from Panorama for a HA pair, it succeeded on the Passive member, but Commit Timed Out on the Active member.

However, when looking at the firewall we do see that the commit was Succeeded looking in Monitor>Logs>Configuration, a

Request help on Mac m2 and Windows 11 for VPN connection

I am one of a few Mac uses in a sea of Windows at Advance Auto Parts ( I am a independent Jobber located in Canada).  The help desk is less  helpful when they hear that.  Trying to connect new Mac M2 with Parallels 18 but help desk says that GolbalPr

Firewallupdates via Panorama - huge delay in download and install

Hello,

I'm managing several PA firewalls (10.2.2, 10.2.3, 10.2.4-h2) via Panorama (10.2.4-h2), I noticed a delay in AV, Content and App update deployment, sometimes it's days or even weeks.

For example, the App update is planned to check and inst