DHCP Lease Issue

• Device details:
• • Model - PA 3020
  • Software version - PAN OS – 8.1.3

• Problem Description:
• • Please be informed that we are frequently encounter DHCP lease full (100%), and it cause interruption for our users at region side.
  • Customer side have two vlan for

GlobalProtect - Multiple Client Settings

Following a change to move from LDAP (Local Domain Controllers) to Azure SAML with MFA enabled we are experiencing an issue with the use of multiple Client Settings Configs on a single Gateway.

We use the users section to identify a subset of users

UnAuthorized Access

Dear,

Anyone can help me to solve my account.

" Your account has expired. To get this resolved, you must reach out with your Super User for assistance.
You can click here to send your Super User a reminder notification."

i have clicked to send a r

HTTP Header Referrer

Hi,

is it possible to build a security access rule based on http-header referrer field?

Someone have do it?

Regards

BGP Communities Import Rule

I have a BGP connection that is up.  Let's say it is to peer 10.1.2.3,  and my Peer AS is 1234

They have a community set that I want to match on in an import rule.  Specifically, 1234:567

I know this is just an example, but the field simply say

Paloalto routing an IPSEC tunnel to another router

Hello, I'm trying to create a tunnel between R1 (OpnSense) and R3 (Sophos), R2 is the Paloalto that NATs a dedicated wan IP to interface1/2 (private TRUST LAN) where is locally connected the Sophos.

R1 (Opnsense) <----->  R2 (Paloalto NAT 1:1) <---

Cisco BGP neighbor x.x.x.x local-as yyyy feature on Palo Alto

Hi,

Does Palo Alto support Cisco BGP neighbor x.x.x.x local-as yyyy feature? or there is any way to achieve the same (Palo Alto FW has a local ASN, but it uses another local ASN just for a specific neighbor)

Thanks!

Automated backups from Panorama

Hi Guys

I have a HA FW Palo Alto, which are managed by a PANORAMA.

Is it possible to do the automated task, to send a BACKUP of the FW configuration, on a daily basis, but from the PANORAMA?

The best option in this scenario, in your experience, is to

Wildfire submission log issue

Hello Team,

                 I am navigating through the wildfire submission logs but I cannt download the file or submit verdict request chage.

why that? I have full control as administrator, any ideas?

TIA

Prisma SD-WAN Fabric

Which OMP protocol is used by the Prisma SD-WAN fabric, and how does it function?

Prisma SD-WAN 

Queries on IPv6 to IPv4 Conversion

Can anyone answer and provide the clarification on to the below queries.

1. Does Palo Alto support IPv6-to-IPv4 NAT without a DNS64 server?

      2. Does Palo Alto support /128 IPv6 addresses in NAT?

Filter Certain Search Strings using URL Filtering stopped working

We set up a custom URL category proxy-search following the instruction here https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Filter-Certain-Search-Strings-using-URL-Filtering/ta-p/52441

This worked fine but recently it has stopped wo

Bootp

We have discovered a few bootp devices which are unable to get an ip - looks like unsupported with Palo.

Anyone have come across this issue and have a suggested work around?