Unresponsive support @clico

Hello,

We've got an issue with a PA3250 and the thing is that support went silent on us. They were supposed to provide us with an answer before 14.12.2022 and we haven't heard from them. Calling them doesn't work, as they don't pick up their phon

QoS bandwidth limit

Hi all,

We did iperf tcp to test the available bandwidth
with QoS active without bandwidth limits I reach around 3Gbps
Without active QoS I reach almost 9Gbps.
I'd like to know if this is normal behavior for PA-1410

The same on PA-3220 doesn't show such

Incomplete release notes

Hello,

why do I have to go there: PAN-OS 10.2.7-h6 Addressed Issues (paloaltonetworks.com)

to find some unresolved issues in 10.2.8 ?

i.e PAN-242627 or PAN-246431

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

Basic Palo Alto configuration Help

I am very new to PA firewalls. 

To understand the firewalls  I have setup a lab and also worked on the physical firewall. 

Following my topology 

PA - Switch - PA

VLAN 100

Ip : 192.168.1.5/30 and 192.168.1.6/30

Zone WAN

Mgmt profile : pin

PCNSE Bootcamp

What happened to the PCNSE bootcamp YouTube page?

Citrix Receiver on Globalprotect

I seem to have Globalprotect working fine for access to any internal resource.

The one thing that does not seem to be working is the connection Citrix Receiver (PNAgent legacy version 13.3) makes to our internal Citrix Web Interface / Services site.

I'

How can I see if my FW has already been exploited by the CVE-2024-3400?

Hello team

How can we determine if your device logs match the known indicators of compromise (IoC) for this vulnerability?

I have already fixed the vulnerability and I have the TSF of my device and I want to see if I have been exploited before applyi

Web Exception

Hi everyone,

I enabled users to access the internet with an SSL certificate on the firewall.I want to redirect a website to users who do not have an SSL Certificate installed. How can I do that?

For example, if an SSL certificate is not install

GlobalProtect and using split tunneling

Global protect has the handy feature of excluding select destinations from being sent over the vpn. For example, setting

(Split Tunnel - Domain and Application - Exclude Client Application Process Name) https://docs.paloaltonetworks.com/globalprotect/