How do the 5450 logical card slots and associations work?

I see the documentation that shows information regarding slot 1 and slot 3 and how a NPC associates to a DPC.   And if you add a NPC to slot 2 it will associate to a DPC in slot 4.   What I don't see is if you add more DPC's, how that associates to t

Portal Page for internal authentication, with certificat download

Hello Bros'

                I am running into a new configuration required for my palo alto setup.

Due to changes we need to make traffic decryption for unmanaged network over virtual wire setup "in/out".

to decrypt this traffic we need to distribuit th

Disable weak cipher suite in SSH

I would like to disable weak cipher suite in SSH for over 100+ Firewalls with the following commands.  The firewalls are running in High-Availability (H/A) mode, version 9.1.10:

configure
set deviceconfig system ssh ciphers mgmt aes256-ctr
set deviceco

User mapping not happening properly

We have recently added a user in the server list.

We are able to see the user in LDAP but when it comes to firewall we are not able to see the user in security policy.

When i checked the user with following command

show user ip-user-mapping all | match

Generated traffic logs showing weird information

I have a VM-500 panos-8.1.18. I am seeing traffic logs with below flags

Session End Reason- policy-deny (means traffic denied as per policy)

Action -Allow ( how can action be allowed when traffic is denied via policy)

Type- deny

We also have ssl decrypt

Configure secrets/psk with Ansible 'panos_type_cmd'

Hi,

When using paloaltonetworks.panos collection - module 'panos_type_cmd' is there any way to set secrets or psk without using the real password?

Configuring via plaintext password works fine and then when viewing the xml config the passwords are st

How do I set bgp auth-profile secret in XML?

Can we use SFP+ with PA-820?

Hi, Guys. I plan to use the PA-820.
The PA-820 has only two HA ports.
I am planning to substitute the HA ports with SFP ports.
Can I use the PAN-SFP-PLUS-CU-5M with the PA-820?
The PAN-SFP-PLUS-CU-5M is cheaper than the PAN-SFP-CG, so I would like to use

Palo Alto IPV6 configuration for firewalls running in active-active HA

Hello All,

We have a customer planning to enable IPV6 firewalling in their current  data center firewalls. The firewalls are currently running in active-active HA mode. I have the below queries.

1. When I configure IPV6 address on the interfaces, is