Traffic Deny due to DNS?

Hello,

I was given a chunk of IP addresses and domains/urls to update into an existing blacklist on the firewall.  I go to objects and create ip-netmask for ip addresses and FQDN objects for domains/urls. Some of the domains i received come in the fo

Rendezvous Point query

Hi Team,

We have already used one interface for RP can we use one more interface to configure RP ??

please find below snapshor for reference

Commit-All to Specific Device Using API in Powershell

I am using Powershell to make API requests to Panorama which cause various commands to be executed on specific NGFWs. I would like to do a commit-all to a specific firewall, not the entire DG/template stack. The documentation Commit-All (paloaltonetw

Have: old PA-200. Need: firmware 5.x

Hi,

I bought a PA-200 new many years ago but support long expired on it.  I've been using it simply as a home office firewall since then and have never upgraded PANOS so it's at 4.1.6.  Honestly it's running fine, but the old SSL version is forcing me

user id group mapping

Hello I have several questions to ask you about the user ID.

1)We say that the LDAP does not map between the ip and the user, so who does the mapping between the ip and the user name?

2)  then, when we configure the mapping of group. I do not unders

XML output command of ARP managment in 9.1.11

Hello ,

I have multiple firewall with running PAN-OS 9.1.11 and above version.

i am facing an issue to generate XML output command of ARP managment.

When i run the ARP managment command to set XML output on i am getting the below error:-

admin@PA-VM-P

License issue

Hello ,

we have a customer who renewed the premium partner support

When we go to License tab , we can see Premium Partner support renewed 

But when i go to Support Tab, it still shows date of 2020

Is it cosmetic ?  We already tried to fetch the licen

Turn off messages

Hi,

is there any way to turn off the below message from showing when we login. 

how to configure gre over ipsec?

Anybody know how to configure gre over ipsec ?

from the 9.0,pa support gre tunnel and only one word describe about this feature.

Issues with Global Protect and Post-vpn-connect

I've opened a ticket with Palo and haven't had much success.  I am trying get the drive mapping script to run and it gives me an error 1008.   Below are the logs for gpservice. Few things I have noticed and tried:

1)it is using my adminacct yet i am l

PanOS 9.1.11 (-h2) on PA-3020 cannot drive all physical ethernet interfaces except for management interface.

Does anyone know whether PanOS 9.1.11-h2 runs on PA-3020?

I have upgrade PanOS on PA-3020 to 9.1.11-h2, and the PA-3020 now cannot drive physical ethernet interface except for a management interface.

When I downgraded to PanOS 9.0.14-h3 or 8.1.20-h1,