Palo Alto Zone Primer

Hi All!

I've recently been creating video guides on Palo Alto Topics. This time I've started on zones.

This includes why we use zones, how they help, and some advanced features that PA have (zone protection profile and packet buffer profile).

If you'r

Palo Alto PA-3050 Rear Visio Stencil

Does anyone have a Palo Alto PA-3050 Rear Visio Stencil? Its not included in the latest release. 

PAN-OS 8.0.5 sending continuous delete and create for IPSec SA

PA is sending continuous delete create every 3 seconds. It can be seen from the PA logs that SPI 0xAFD67238/0xC436E70E created at time 2020-06-13 05:50:55.230 and PA became responder for established child SA. For some strange reason PA again triggers

DNS Resolution

Extract output node's feeds to custom platform.

How to export minemeld outputs to a custom platform.
I am working on a threat handling platform and I would like to use the feeds coming from minemeld output nodes, extract few details and use those to monitor other feeds.
For that I need to get the ou

Retrieving minemeld feeds into SPLUNK

We have configured SPLUNK as per the Palo Alto guide here (https://splunk.paloaltonetworks.com/autofocus-and-minemeld.html).  All configurations have been applied as per the documentation but we are not receiving these feeds into our SPLUNK instance.

Redis - Package Upgrade Issues

I've been trying to upgrade my Ubuntu instance for the past few months, but keep having to install all package updates manually as redis-server and redis-tools fail as it can't overwrite the minemeld redis config. After updating the packages, we are

panorama disk-space

We see"Show system search-engine-quota" displays 480491MB of space, accounting for 66% of the document, and the detailed information(total size) displayed under search engine also does not reach 480491MB. Can you explain it? Thank you

The following is

After upgradae of pan os 8. 1. 14h2 auth profile changes auto

• the PAN-OS has upgraded from 8. 1. 9h4 to 8. 1. 14h2.
• The issue has been reported that users are able to connect the VPN via Global protect with their AD logins, but unable to access few web-based applications.
• The logs are not received by the firewall

Dynamic Domain List Empty

Created Dynamic Domain list, added single domain x.y.com > added list to antispyware profile > profile is used in policies but still the list shows empty. Also tries y.com still it is empty. Source URL is accessible an there are other IP lists in sam

GRE Tunnel with Zscaler...

Hi Team,

Does Paloalto NGFW supports GRE tunnel with Zscaler?

Thanking You!!

Regards,

Om Prasad