REQUEST: Grace period for GlobalProtect patch checking

Problem:

Because of occasional issues with vendor patches, like MS had early this year, (see URL below), very few companies release patches/updates to clients or servers on the day of release. They test the updates first, then release them days or ev

PROTIP: Factory Reset from MacOX

tl;dr use the command "cu" instead of "screen".

I have been trying to factory reset a PA-3200 for about 45 minutes.  I am using a standard RJ-45 to DB9 serial cable with a USB serial adapter.  Following the instructions I get to the step where I ha

DNS sinkhole

Hello everybody,

How many policy we need for block and review source of infected hosts?

One or two?

Internal dns is using but we can not see source of users.

Retrieving Content 'Antivirus' info failed with error 'An error occurred while processing request. Please try again after some time or contact support

All our 10 devices throws there errors (medium severity) since Thursday.

TAC has no response for this.

Anyone?

Bug Search Tool (New Feature & UI)

Hi all,

A colleague of mine asked if it was possible to search for specific URLs or IP addresses in PAN hosted EDLs, to help figure out which EDLs they might be part of, which i found out it's not. It's pretty tedious to go through all the EDLs at 

Transitioning Free Trial to paid subscription

We selected the paid PA-VM subscription that includes the 15 day free trial.  It looks like it won't be fully licensed until the end of the 15 day trial period.  Can we skip that and enable now to get access to the support portal and wildfire api key

Detecting Or Hunting For CVE-2025-0108

Hello Folks,

I am looking for a ways to detect the attempt for this vulnerability through SIEM. Based on the blogs available the vulnerability can be exploited by accessing URL with "unauth" on management interface. So I am thinking to look for web

IPSec tunnel over IPSec tunnel not working

Has anyone ever done tunnel-over-tunnel on the PaloAlto (to Cisco/etc.)? I have been having problems getting traffic to return to a remote site. I normally have multiple IPSec tunnels to remote sites (carrying specific isolated VLAN/networks) over a

Add backup GlobalProtect portal to GlobalProtect client

On our PA-1410 under Network - GlobalProtect - Portals - each of our portals (one on each interface for each ISP) - Agent - Agent Config - External Gateway I added gp2.domain.com to go along with gp.domain.com. 

I was thinking (hoping) that would upd

VPN tunnel flapping after the 11.1.4-h7 upgrade

We have upgraded our FW to 11.1.4-h7. After the upgrade the IPSEC tunnels were working fine. But from the past 2 days we are observing that tunnels are flapping and one of the tunnel is down due to phase-1 negotiation failure due to timeout.

Does a

PAN-OS 10.2 preferred release Vs. vulnerabilities

Hello everyone,

  maybe this is a silly question, but as far as I can see the current PAN-OS 10.2 preferred release dates back in november and does not include fixes for recently discovered vulnerabilities (CVE-2025-0108, for example). I usually pu

GlobalProtect requires token twice - Possible RSA inconvenience

Hi Community. I have an issue on GP: it makes requests for token twice to get through VPN to my network.

I discovered the RSAs feature "Next Token Code Mode", but believe PA (5050 - PAN-OS 7.1.10) has nothing to do when a NTC is requested, so I recom

Lab license for Palo Alto

How hard is it to get a lab license from a Vendor such as CDW.   Last week I  went to their website and purchased 'PAN-PA-410-USG-BND-LAB'.  

Today I looked and saw it as canceled.  Still trying to find out why it was canceled.   The cost of $104 w