High Availability question

Hi all,

This is my first post on this forum. I am also a brand new Palo Alto customer and we just purchased a pair of 3220 firewalls.

As the subject says my question revolves around HA as I would like to start putting together a plan for design and d

Anyone have issues with 10.0.6

Just kind of a broad general question, but has anyone had any issues going from 9.1.x to 10.0.x in a large environment? Or would the preferred 9.1.x version be the way to go?

PaloAlto integration with external sandbox

Dear Team,

Appreciate your support for the below.

Can we have integration with external sandboxes such as TrendMicro sandbox (DDAN) through API?

Thanks in advanced

Show Shadow Rules 2021 Post

Hello -

I saw a post about this from 2012 and the answer was basically no.

Well, it's been nine years now and I'm hoping there is a way to view shadow rules without doing a commit.

Block malicious domains at interface level

Hi Team,

I have a concern where is there any way to block malicious domain based or malicious ip based traffic ingress through the firewall to trust zone or dmz zone from untrust zone to be blocked at interface level even before it reaches to pbf or

GlobalProtect breaks internet access

hello guys,

Did some of your GP uses complain that they lost the internet after GP connected?

It just happens recently and for some users only.

GP version is 5.2.7

Thanks

Regarding blocking unknown or malicious domains or malicious user

Hi Team,

I have a query where i need to block some unknown attacker or someone malicious from external trying to access my internal network or DMZ.

I need to ways to block or deny those specific traffic. We have enabled country based block, we have IP

Regarding EDL domain list which is not working.

Hi Team,

I have a query where i need to block domain based malicious domains to be blocked with regards to EDL which we have internally.

I have called the EDL over the Application/URL category of the policy which has the EDL name which consist of cer

GlobalProtect - how to edit the download page

Is it possible to edit the GlobalProtect download page?

On the page where users are prompted to download the 32bit, 64bit, or Mac version version of GP, I would like to add some instructions for the not so savvy user on which version to select and how

Remedies for block attacks.

Dear Team,

One of our faced some attacks from their wan interface IP. The issue is reported by their ISP team, when we checked in the firewall there are no logs.

In customer network, huge number of traffic is going at the same time. The device is 302

Not able to connect AD Domain

hey guys one of my clients is not able to connect in the domain some users are connecting while some are not. The users are in Location A in another city and the Domain server is from another site  I attached B the image ignore.

that is it from the fi

Palo Alto Device certs (Default Trusted Certificate Authorities List)

I am dealing with an issue in which the Palo Alto is in proxy mode.  The issue is concerning endpoints being able to access a cloud tenant to register (install) a component.. The FQDN of the cloud tenant has been added as an allowance for these endpo