Find object tag in Rules?

I am trying to get rid of FQDN objects that no longer resolve (1000's BTW). Problem is that you can't delete an object if it is in a rule or address group. I can tag all the objects via command line which is great, but how can I see all the rules whe

Setting Up PA220 for Home

Hi,

I'm trying to get my PA220 up for my home use.

Right now it's plugged into a router, and I am plugging a laptop into the second ethernet port.

I went through instructions here:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0

Error querying OCSP responder

We have an issue with the R3 root certificate caused by the OCSP Certificate Revocation Checking within our decryption profile. We're seeing all sites using this certificate being blocked due to unknown issuer. When we run the "debug sslmgr view ocsp

are you permitted to remove all local admin accounts pan-OS 9.1 or higher?

hello all,

I'm a PA noob who has recently just transitioned to a team that has a pretty heavy backlog. sorting through it, I see another team has requested that we remove local admin accounts from our firewalls. to my knowledge, the only local account

Website access issue

Hey team,

The site is showing in cryptocurrency and getting blocked (https://www.tradingview.com/).

As the checked site is showing under 3 categories and we do not want to allow cryptocurrency.

As a workaround, we added the site into the custom categor

Free licenses

Hello,

I wanted to deploy a virtual test environment with panorama and a cluster.

Does anyone know if it is possible to get trial licenses for a few days to be able to include devices in panorama?

Regards

PA-220 /PAN OS 10

Does anyone know if the these pa-220 issues with pan os 10.x are planned to be addressed?

Upgrading a PA-220 firewall takes up to an hour or more.

PA-220 firewalls are experiencing slower web interface and CLI performance times.

Also, is the Palo recom

deviceconfig -> setting -> session -> dhcp-bcast-session-on unexpected here

In November we upgrade to 10.1.3 and this error could not get resolved with TAC so we reverted back. We just upgraded to 10.1.4 and we are getting the same errors as before:

deviceconfig -> setting -> session -> dhcp-bcast-session-on unexpected here
d

URL blocking Web Advertisements with exceptions?

When i set our URL filter to block category 'web advertisements' it works as expected. However, it also blocks many of the results of Google and Bing searches. I understand that is because the results in question are web advertisements, strictly spea

Internal Host detection - Needed refresh connections in some devices

Hi,

We enabled "Host internal detection" because user in company complanining about GP was taking the cursor. After configurin "Internal host detection" the GP stop taking the cursor but there are some users which its necessary to  "Refresh connectio

Please help clarify about action of DoS protection policy.

We understand DoS protection works when we set action Protect.

We need to know the benefits to setting action Allow and Deny.

Because we think that option is the same as normal security policy.

Thank you.