Network segmentation via routers VRFs to Palos VRs and OSPF

Hello everyone and thank you for your answers, I would like to implement segmentation in the data center, we will create VRFs in a Cisco Nexus Core switch and each VRF will have its own OSPF process to peer with a Palo Alto Firewall, all VRF traffic

Very weird PanOS upgrade issue

We have a pair of active passive firewalls on PanOS 9.0.11. We have attempted to upgrade to 9.1.10 4 times out of which 2 times was with tech support. Upgrade seems to cause issue with some linux servers which are critical to us. As an example we hav

Global Protect version 5.2.8 - issue with Microsoft Defender ATP

Hello

We have a issue with Global Protect, we have upgrade to 5.2.8 and the AV Microsoft Defender ATP is not work properly:

In the last version (5.2.5), there is no problem with AV:

Miner for salesforce.com

Hi Team,

Can you please advise how to build a miner to map all salesforce.com IP's?

Globalprotect client losing dns intermittently

hello everyone

We have a intermittently issue with GlobalProtect client and the local DNS resolution. We have conigured local dns servers on network services and we have established "Resolve All FQDNs Using DNS Servers Assigned by the Tunnel (Windows

Inbound traffic to DMZ issue

We have reports of certain users not being able to access our public website but majority of users are able to. The traffic log shows that the application is incomplete. Packet capture reveals the 3-way handshake does not complete and the session tim

VPN IPSec Configuration Disappeared from GUI

An issue where I can’t view any configured IPSec Tunnels in GUI,

From CLI, the IPSec tunnels appear normally.

Tried failover, restarting management service, even rebooting both Palo Alto units, using different browsers, different computers, and export

PA-850 Migration to 10Gb SFP+ Interface

Hi, I have a customer who was a PA-850 firewall. There connection to their LAN is currently using a 1Gb Ethernet port (Port 4). They are in the process of upgrading the network backbone to be 10Gb and wanted to change their connection to the Firewall

GlobalProtect and "client sleep mode"

Hello,

as described in the "GlobalProtect 1.1.6: Addressed Issues" (issue point 35361) the unnecessarily reconnection after sleep/hibernate mode should be fixed.

We are using the GlobalProtect Version 1.1.7 . The portal configuration are:"On demand" mo