Incomplete release notes

Hello,

why do I have to go there: PAN-OS 10.2.7-h6 Addressed Issues (paloaltonetworks.com)

to find some unresolved issues in 10.2.8 ?

i.e PAN-242627 or PAN-246431

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

Basic Palo Alto configuration Help

I am very new to PA firewalls. 

To understand the firewalls  I have setup a lab and also worked on the physical firewall. 

Following my topology 

PA - Switch - PA

VLAN 100

Ip : 192.168.1.5/30 and 192.168.1.6/30

Zone WAN

Mgmt profile : pin

PCNSE Bootcamp

What happened to the PCNSE bootcamp YouTube page?

Citrix Receiver on Globalprotect

I seem to have Globalprotect working fine for access to any internal resource.

The one thing that does not seem to be working is the connection Citrix Receiver (PNAgent legacy version 13.3) makes to our internal Citrix Web Interface / Services site.

I'

How can I see if my FW has already been exploited by the CVE-2024-3400?

Hello team

How can we determine if your device logs match the known indicators of compromise (IoC) for this vulnerability?

I have already fixed the vulnerability and I have the TSF of my device and I want to see if I have been exploited before applyi

Web Exception

Hi everyone,

I enabled users to access the internet with an SSL certificate on the firewall.I want to redirect a website to users who do not have an SSL Certificate installed. How can I do that?

For example, if an SSL certificate is not install

GlobalProtect and using split tunneling

Global protect has the handy feature of excluding select destinations from being sent over the vpn. For example, setting

(Split Tunnel - Domain and Application - Exclude Client Application Process Name) https://docs.paloaltonetworks.com/globalprotect/

Version 11.0 or 11.1?

Which software stream is regarded as the more robust and future-proof? The 11.0 stream or 11.1?

Can't install device certificate

Hello,

I'm trying to install a device certificate as instructed in the manual. 

I generate OTP using my account, I indeed see my valid serial number, get the OTP. 

Then I copy-paste to the firewall GUI and get the following error: 

I'm connected

TS agent SSL error

Hello, 

I've been trying to add a new TS agent on my firewalls. As there is no redistribution for user-{ip+port} mapping, I want to map the TS agent to 2 FWs. Backend FW is connected correctly, Frontend FW is in error.

I can capture the following betw

403 forbidden error while importing IDP fiile

Hii,

I have been trying to import G suit IDP file in SAML Identity provider on palo alto VM firewall but for infinite time its just showing message "uploading" without showing any error message. when I checked in network tab of inspect element I ca