IP Spoofing understanding

I'm planning to implement IP drop - under Zone protection on a production system.  I'm really only interested in the ' IP Spoofing ' aspect & I'd like to understand a little more on how it works so that I can addresses any issues, should they arise.

I can't open Support Cases.

I can't open Support Cases. 

Becauase single sign on error.

I cleared the browser cache and tried with other browsers too.

Other options work fine, but only the Support Cases is not open.

What should I do?

Not opening login page to login

I'm using GlobalProtect to connect to a customer.

Earlier a "web" page opened to type in my user name, now it's not happening anymore. It's trying to use my company login which is wrong, I have a account at the customer. 

My IT helpdesk, is telling me

Testing "Security-Focused URL Categories"

Is there a way to test the "Security-Focused URL Categories" with some example of URLs that would match the category?

I went looking for them in my log after setting them to Alert and found none. 

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-ad

GlobalProtect with Azure MFA - Double login (username+password)

Hi, we have a customer with GlobalProtect with MFA from MS Azure. The setup works fine but we are still unable to get rid of a "double login". Not the MFA with a SMS on phone but the regular username/password combo.

Usually it goes like this: 1. Login

https://etm.ru website haven't open

Hi All,

 We have tried to access one Russia URL (https://etm.ru) from our INT-trust and VPN zone while the result is ERR_HTTP2_PROTOCOL_ERROR and have tried with different browser but result is same . We could access through VPN external US gateway (

Suspicious DNS Query (generic:contador.hotelarena.top)

Boa tarde pessoal, 

estou com comportamento estranho em meu Firewall.

notamos muitas requisições do meu servidor de dns interno para o dns externo com " type spyware " 

Verifiquem o anexo.

Geo Blocking problem

Hi, I am using Palo Alto (PA) firewalls hosting Software Version: 8.1.17 in AWS and need to configure Geo-Blocking so that only GB (United Kingdom) requests are permitted and all other requests denied. 

The infrastructure setup is as follows:

FQDN =

Deduplication issue and config document regarding aggregator and output

Hi Experts,

I’m testing with Splunk but, I got a problem about deduplicate.

I’ve been input different 1000 indicators of IPv4 after deduplicate, there is 750 indicators of IPv4.

below one IP address has a different value but, after deduplicate, I c

Interzone Static Routing

Hi all, I'll preface this as I'm the sole networking guy at my job and I'm still green. Apologies for any dumb questions, I've tried to read the manual for relevant info and used my google-fu to no avail.

I'm using a PA-3020 on firmware 8.0.6.

I've b

error user in group mapping

Hello, 

After upgrading to 8.1.X > 9.0.X > 9.1.x. we found that some ldap users do not check per user policies, only for ip politicies.  

Configure a Managed Palo Alto device when panorama server is unreachable

Hi,

I am planning to deploy Panorama server to manage 4 FW on main site and DR site with Panorama server installed on the main site in panorama mode.

I wanted to know if we can access and configure the FWs in the event of a communication failure or vi