nslookup on the management port ?

I would like to check a few DNS issues I'm seeing on the management port.

I had hoped to find nslookup in the CLI, but it isn't there.

Is there something equivalent ?

Thanks.

Looking for AI/ML tools for DoS/DDoS protections and traffic analysis

Hi all,
Large organization - looking for recommendations of AI/ML tools that we could use to augment our traffic analysis and provide DoS/DDoS protections. I know there are many different ways this could be done but I'm just looking for some 1st-hand-

GlobalProtect reports a "Client Certificate Error" but still connects

Hello-

I'm running a PA-500 on with GlobalProtect for VPN access.  Just recently our users started experiencing an issue wherein they try to connect and receive a "Client Certificate Error" error dialog.  However, after they click OK to close the dial

The Mysterious "stun" application

Does anyone have a understandable explaination of this application called "stun" from what I can gather its used for things like skype and facetime, but it generates a lot of traffic in my network. While yes we are lync/skype in house and there are t

GRE Tunnel to Zscalar

Hi All,

I have setup the GRE tunnel to Zscalar. I am not able to ping the peer(Zsclar) from the tunnel interface created for GRE Tunnel. I see the GRE tunnel interface is down, cant see any ARP as well from the peer as it is down. Is there anything

"commit-all" API failed to push to firewall

Hi 

We are encountering issues with the "commit-all" API. The changes and configurations are in "commit list" then we tried to hit API commit-all, There is nothing happen in "commit list". The logs indicate a successful operation but in the error t

Can't see the Review Policies or Review Apps link under Applications and Threats

Hello,

I cannot see the Review Policies or the Review Apps link on this page? It is simply not there? Ideas? Thoughts? Bug?

Logging and Change Management in Prisma Cloud

Summary:

• There is currently a size limit of 128kb in compute console history logs.
• It's likely to hit this limit and then only an error will display in the changes section: "diff size exceeded limit (128KB)".
• This makes the history log useless for au

Strange behavior

Hi,

facing issue where directed interfaces traffic is not working (from DMZ zone to Servers zone) , while from Inside ZONE to SERVERS is working fine despite inside users SVI is core switch then static route from core switch to paloalto while for u

WinRM-HTTP fails with the error 401

Hello, I'd like to request some advice on trying to shift away from WMI to WinRM-HTTP/S based User-ID. 

I followed the set-up guide by Palo and User-ID server monitoring is able to connect to the domain controller over WinRM-HTTP, but only every hour

GLOBAL Protect using SAML Authentication with AWS as the Identity Provider

Hi all,

I'm looking for a configuration guide to implement SAML authentication for Global Protect users using AWS ?

Basically I want to do the same like this (Azure in this case)...

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00