Paloalto routing an IPSEC tunnel to another router

Hello, I'm trying to create a tunnel between R1 (OpnSense) and R3 (Sophos), R2 is the Paloalto that NATs a dedicated wan IP to interface1/2 (private TRUST LAN) where is locally connected the Sophos.

R1 (Opnsense) <----->  R2 (Paloalto NAT 1:1) <---

Cisco BGP neighbor x.x.x.x local-as yyyy feature on Palo Alto

Hi,

Does Palo Alto support Cisco BGP neighbor x.x.x.x local-as yyyy feature? or there is any way to achieve the same (Palo Alto FW has a local ASN, but it uses another local ASN just for a specific neighbor)

Thanks!

Automated backups from Panorama

Hi Guys

I have a HA FW Palo Alto, which are managed by a PANORAMA.

Is it possible to do the automated task, to send a BACKUP of the FW configuration, on a daily basis, but from the PANORAMA?

The best option in this scenario, in your experience, is to

Wildfire submission log issue

Hello Team,

                 I am navigating through the wildfire submission logs but I cannt download the file or submit verdict request chage.

why that? I have full control as administrator, any ideas?

TIA

Prisma SD-WAN Fabric

Which OMP protocol is used by the Prisma SD-WAN fabric, and how does it function?

Prisma SD-WAN 

opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.paloaltonetworks.com, Reason: unable to get local issuer certifi

Hi, we are getting the following 2 x alerts on the same firewalls, can you please let us know how this can be fixed - googled it but I couldn;'t find a fix:
alert1:opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.p

Queries on IPv6 to IPv4 Conversion

Can anyone answer and provide the clarification on to the below queries.

1. Does Palo Alto support IPv6-to-IPv4 NAT without a DNS64 server?

      2. Does Palo Alto support /128 IPv6 addresses in NAT?

Create SSL VPN on PA-500

Hello. Week ago friend of mine gave me an old PA-500 w/o license and subscrption.

Since I had no admin pass therefore device was factory reseted. As Internet firewall device work fine now. Do somebody know is it possible to make

Filter Certain Search Strings using URL Filtering stopped working

We set up a custom URL category proxy-search following the instruction here https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Filter-Certain-Search-Strings-using-URL-Filtering/ta-p/52441

This worked fine but recently it has stopped wo

Bootp

We have discovered a few bootp devices which are unable to get an ip - looks like unsupported with Palo.

Anyone have come across this issue and have a suggested work around?

XML API for Global Search

Hi All,
I am trying to test XML API for global search . I am trying to use for search security rule with given description . 
ANy help for this.

Website Filtering Dillema

Good morning, I've got a situation where some students are going to an inappropriate gaming site that also bypasses the content filtering I have in place and allows access to some adult content, this is one of the websites: https://friv2025.com, the