RFC1918 addresses inbound to untrust interface

I have a pair of palos in azure, they are frontheaded by a LB. I also have a VPN gateway in the gateway subnet of the vnet where these components live. Not ideal but I am trying to connect a legacy vWAN hub to a new landing zone. I have a VPN from old to new using VNGs. I have a no-net from new landing zone vnets from trust to untrust so the rfc...

Palo Alto Networks Micro‑Credential Remote User Administrator (PMRuA)

Hello Experts, Can someone please guide with good material for Palo Alto Networks Micro‑Credential Remote User Administrator (PMRuA) exam.

GlobalProtect Prompts Me to Choose a Certificate???

Does someone know why I'm being prompted by GlobalProtect to choose a certificate...under what circumstances does this happen...is it by design or a BUG? How can I stop it from happening!!!

How can I configure Palo Alto for static IP via MGT cable? No network access.

What is the difference in function between the Global Protect Content Filter and the Cortex XDR content filter

On Mac (but I assume something similar exists on PC), both Cortex XDR and Global Protect install a content filter agent. What is the differnce in function between these 2 agents? If I remove the Global Protect agent do I still benefit from the same level of protection solely with the Cortex XDR agent?

pan os 10.2.4 advanced routing engine static route issues, a bug?

Hi guys, I have logged the case with palo alto with 'no issues found' response I would like to ask if anyone can kindly test for me I have converted to an advanced routing engine (pan os 10.2.4) conversion when fine, no issues, green light upon conversion results all my static routes stopped working after that, they are like being ignore...

SCEP for firewall device cert?

We do not currently have SCEP set up in our environment nor are we familiar with it. But if we did have it set up would our PA firewalls be able to request a cert that we could then use in a SSL/TLS service profile to have a secure connection between our computers and the mgmt gui of the PA? Deploy Certificates Using SCEP (paloaltonetworks.com...

Issue with finding palo alto self-signed certificate under certificate menu

Hi there, Management web is using palo alto self signed certificate but I'm not able to find it under certificate menu in device section. Any one has faced this issue before? It should be somewhere in configuration refer to self-signed certificate, if I want to create a self-signed certificate by myself I'm able to see that certificate under...

Connect same VLAN to multiple V-SYS

Hi All, We have a PA-5220 firewall cluster which has running multiple V-SYS itself. The firewall is connected to the up stream router thru a port channel. On the up-stream router VLAN 10 is allocated to the WAN-IP range. I need to extend that VLAN 10 to the V-SYS A and V-SYS B so I can can assign the respective public IP addresses to the diffe...

PBF not working with DNAT policy for server

Dear Team, We have 5 ISPs and we have configured PBF for a group of IPs/networks. We observed while routing the server from X ISP to Y ISP, the server which is published on X ISP becomes inaccessible. Request you please help to resolve the issue on a priority basis.