GlobalProtect 6.3.3

Our vulnerability scanner for the last couple weeks has been reporting vulnerabilities for GlobalProtect that are remediated with an upgrade to 6.3.3, but other than the vulnerability acknowledgement from PA mentioning it I do not see any evidence of

Other Administrators are holding device wide commit locks

Hi Guys,

i have actually the problem that i cant do any commit, there are two pending commits and if i try to commit the following message appearing:

"Error Other Administrators are holding device wide commit locks". 

Even when im logged in as the ad

External Web Proxy

Hi.

Have someone working with next hop fwd proxy ? 

I need post firewall solution for additional files types blocks (like Trellix)

What is the Checkov softwate ECCN number

Hi Team, 

We would like to consider using checkov software ( https://checkov.io) for our projects. As part of the security compliance, we would like to know the ECCN number for the checkov software. Could you please help share the same or let us kn

Social Media not blocked

We had created a security policy to block all social media and it was working fine, then since two weeks we found that Social Media is working and when i check the security policy everything shows fine and I checked the logs it shows as deny but even

WI-FI calling through paloalto

Hello Team,

                 I am trying to allow the wifi calling in my network because of coverage issue from the provider.

now its blocked in my internet and network.

how to make sure the wi-fi calling is allowed through paloalto firewall.

panos 1

Migration from Juniper to PANOS

Hi All,

we are looking at migrating from juniper to PANOS, now that expedition is EOL, what's the process for this please.
Any insight would be great.

TYIA

BGP Session Establishment Troubleshooting on Palo Alto?

Hi Folks....requesting anyone's Palo Alto FW troubleshooting expertise:

In one of our implementations, we ran into some BGP session establishment issues and that delayed the change a lot as we couldn't figure out the issue.

The issue was the BGP auth

Timeout while exporting a device state into a TFTP server

Hi,

I'm trying to export a device state from the Panorama CLI into a remote TFTP server, but I get a timeout.
Both the Panorama and the TFTP sever are on the same network, so the traffic does not pass the firewall.
Also, there's over 200 GB of free s

Variables is DNS Proxy rule?

Hi, 

My question would be, is it possible to use template variables to set primary end secondary dns for DNS proxy rules in Panorama?

I can set a static entrys' IP address value to a variable defined in the template, but can't find the way to do the