Queries on IPv6 to IPv4 Conversion

Can anyone answer and provide the clarification on to the below queries.

1. Does Palo Alto support IPv6-to-IPv4 NAT without a DNS64 server?

      2. Does Palo Alto support /128 IPv6 addresses in NAT?

Filter Certain Search Strings using URL Filtering stopped working

We set up a custom URL category proxy-search following the instruction here https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Filter-Certain-Search-Strings-using-URL-Filtering/ta-p/52441

This worked fine but recently it has stopped wo

Bootp

We have discovered a few bootp devices which are unable to get an ip - looks like unsupported with Palo.

Anyone have come across this issue and have a suggested work around?

Authentication with PA440 using Microsoft 365 Entra ID

We are in the cloud with Azure GCC High environment and have no on prem AD. We are searching to see if there is a way to set up our PA440 to authenticate for a VPN using the user accounts on Entra ID in M365? Does anyone have any experience with this

XML API for Global Search

Hi All,
I am trying to test XML API for global search . I am trying to use for search security rule with given description . 
ANy help for this.

Can this OID notificate the expired certificates for SSL decryption and Global Protect?

Hi,

I found the below OID in SNMP Trap.
Can this OID notificate the expired certificates for SSL decryption and Global Protect?

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HBfzCAG

====
panCryptoCertExpiryTrap  .1.3.6.1

Website Filtering Dillema

Good morning, I've got a situation where some students are going to an inappropriate gaming site that also bypasses the content filtering I have in place and allows access to some adult content, this is one of the websites: https://friv2025.com, the

Decryption Profile

I modified existing decryption rules to add a decryption profile to each of them.  In the profile, I have "Block sessions with untrusted issuers" checked.   I'm finding sites with well-known trusted certificates are being blocked due to this.  My und

MTU issues over SD-WAN

Looking for feedback around MTU sizing over SD-WAN.

We have deployed firewalls with SD-WAN and are recieving feedback pxe boot for imaging pcs over the network is no longer working. It appears the MTU is larger than 1500 and is being dropped.

The im

Can't access support portal, oddly enough

I try to log into the support portal, and it takes my creds and MFA, and then gives me: "An unexpected error has occurred. Please contact support." (The irony is not lost on me.) I can't call, because the automated support line is expecting me to hav

DR Panorama facing issue with the login when performing failover from DC to DR

Dear Team,

One of our customers is using Panorama for both their DC and DR locations. When the DC Panorama is active, they are able to log in successfully to both the DC and DR Panorama. However, when a failover is performed and the DR Panorama becom

Prisma SD-WAN Fabric

Which OMP protocol is used by the Prisma SD-WAN fabric, and how does it function?

Prisma SD-WAN 

GP portal login page remains unavailable after unblocking IP

Dear community!

I have configured a vulnerability profile to make use of threat ID 40017 in order to prevent brute force attacks on globalprotect portal page. Followed this article:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA1

TSF file

I want to create a case,  but tits mentioned upload a TSF file and its mandatory. 
the problem is I cant even log into the device to get a  TSF file ( thats why I am creating a case for them). Any solutions ?