DHCP server issue with PA3020

Hello,

 I have PA 3020 on which I have configured a DHCP server with about 400 reserving "binding", and IP pool for non reserved.

this DHCP server is configured on vlan tagged subinterface.

every thing is going well for laptops and PCs "windows", but I

trial license for pa-220

Hello guys

I m trying to get a trial licence for lab purposes for my personal pa-220

Not familiarized with palo alto environment (thats why I bought the pa-220 btw)

I don t have an account manager or a ce because I m not a company.

More experienced users

Issue With DNS Suffix

Dear Team,

The challenge was that we need to do commit with wildcard in dns suffix ie. *.xyz.com but it failed ( PAN OS 9.1.7).

For workaround we have removed wildcard.

You seen in other firewall with panos 9.1.5 its having dns suffix with wildcard. F

Packet capture hitting specific security policies?

I would really like the capability to setup packet captures for traffic that hits specific security rules. For example, we have rules that block outbound connections to Palo's dynamic IP list for known malicious IP addresses and would like packet cap

how to configure multiple DNS suffix and confirm on global protect client

How to configure multiple DNS suffix and cross check on global protect if both DNS suffix entries exixt there.

Any help with documentation appreciated.

Thanks

Azure CDN (Edge Nodes) list

Hi,

I have been asked to import a new IP list within Minemeld; the Azure CDN (edge nodes list).
To retreive the list, I have the API documentation here:  https://docs.microsoft.com/en-ca/rest/api/cdn/edgenodes/list

I am only a beginner when it comes to

Revoked Machine Certificate still able to Connect Global Protect Gateway

It appears possible to configure the firewall to be an OCSP responder to itself/clients from the posts below? Is that correct? (Specifically referring to self-signed certificates generated on the firewall)   If so, is there any risk to having this se

Test URL -> Operation Failed: URL access error

Ive been reading this forum for similar problems, but seems I have different problem.

I must say I had difficulties building this, but now this seems to be the last obstacle.

So I got minemeld up and running and its able to get feed and I can access th

Pallo Alto Version 10 show transceiver command for SFP check/troubleshooting

Before only the "show system state filter xxx" ( https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClaMCAS ) was used to check issues with SFP but in version 10 the show transceiver is here and this is great 

https://docs.pal

URL Filtering Clarification - Wildcards behavior (implicit match on the rear of the URL)

Figured I'd share this here as I already have on another platform.  Been using PanOS for ~8 years and came across something with URL filtering and wildcards.   URL filters with wildcards will match on the front, and back of the URL(implicit), if you