Import TXT or CSV to an Address Group?

I have a TXT file (I could also save it as a .CSV) of about 2000 known bad IP addresses I want to block traffic to/from. Is there a way to import this list into an Address Group? I see an option to download a dynamic list but I would then have to hos

NAT mapping public to private IP

Hello all,

I have been updating our NAT policies within our PA-3220 to specify traffic translation mapping from our public addresses to private addresses. After committing the changes the traffic has only been routing to the catch all NAT rule at t

IKEv2 IPv6 tunnel with dynamic endpoint from one IP

With IPv4 it is possible to build multiple IPSec tunnels from one interface IP with dynamic/unknown destinations and separate them based on the IKE peer IDs. That configuration is accepted by the firewall.

As for IPv6, as soon as one source interface

Log forwarding - Filtering and Auto- tag not working

Hi there,

I had setup Log forwarding profile, where I am sending All logs to syslog server. Thats working great.

Then I added one more line where I am filtering threat logs for (severity eq critical) and (zone.src eq internet_zone)

Checking f

Release dates for PAN-OS

Hello all,

Can anyone provide me the release dates for the following in regards to PAN-OS:

10.0.4
10.0.5
10.0.6
10.0.7
10.0.8
10.0.9
10.0.10
10.0.11
10.0.12

Thank you

Reverse proxy for Exchange ActiveSync

We have a Palto Alto cluster and I want to use them as reverse proxy for our Exchange inbound trafic. We activated decryption for this trafic and we want to allow only ActiveSync trafic / application.

It did not work with only allow ActiveSync appl

Allow traffic mikrotik site to site.

Hi everyone. I just installed a firewall at an office. Office A is connected to office B via two site-to-site mikrotiks.
Inside office A there is a server that records the presence of office B employees.
After introducing the PA440 it stopped working..

Query related to import export config

Hi Team,

We are doing a migration of the firewall from the local VM firewall to another new firewall which managed by Panaroma. We have the below question for the import and export configuration. 

1) Can we export a few configurations together, like

Can't import a certificate via XML API using C#

Hello,

I'm trying to import a certificate to a Palo Alto VM-50 via XML API with an App written in C# but I always get this error:

My C# code is be

Issue Reported in PANOS 10.2.7

the client has been dragging a problem since version 10.2.4 and still sees 10.2.7. Currently the client is on one of the affected versions, PANOS 10.2.7.
This prevents users from being able to disconnect from Globalprotect via passcode or password, th

slow GUI

Hi,

why my GUI is soo slow ? I have to wait 10-15 sec for new clicked tab to open. (Main Menu on top)

Does anyone of you have the same problem?

My PA is PA-2020, software version 4.0.3