Are You Ready for PAN-OS 10.0 and the ML-Powered Next-Generation Firewall?

In case anyone hasn't heard that the NEW version of PAN-OS 10.0 is going to be released soon, This will be a new ML-Based NGFW (Machine Learning) and there is going to be a huge launch event for it.

Palo Alto Networks is beyond excited to announce

Using MineMeld to build a list of IP addresses from a list of domains

Our current MineMeld instance is doing a great job of handling our Office 365 requests. Now I'd like to use it to solve a different problem, but I'm not sure how to go about it.

We need to allow outbound app-specific traffic to *.somedomain.com. I

PA 7.1.0 - IPSec SA goes into create delete loop after enabling tunnel monitor

Hi, 

I am facing a strange issue in IPSec connection with PA (7.1.0) and strongswan (5.6.2) where I see Paloalto starts sending CREATE_CHILD_SA rekey requests to strongswan when I enable tunnel monitor. Earlier we were using strongswan (5.3.5) and d

Multiple ISP

Dear Team,

I have a query. One of the customers wants to load balance their Internet traffic between multiple ISPs ( they have 5 actually). Can we do that ? I know we can do for dual ISP. But will this be feasible ?

PA3250 - L2 - L3 interface communication

Hi Team!

I have simple topology ( pls see at the picture). 

I configured eth 1/1 ( for PC2) as L2 interface, but without Security Zone. 

I want to ping from PC2  - default Gateway (AE1.121) and PC1. 

Is it possible to set up Palo Alto like this?

Pls, g

Chromebook Global Protect failing

I have Setup Global Protect but my chromebook is failing to connect, I thought my config was dud but I have just tried to connect with my macbook and it works exactly as it should. 

I can't see why the chromebook wouldn't work, clearly the setup must

Source IP issue. *Urgent*

Hi team,

I am facing the source IP mismatch region .

This is the IP 41.139.156.142 which shows up from Kenya, i have confirmed from https://ping.eu  & https://threatvault.paloaltonetworks.com/ 

but in firewall traffic log it show like this IP belongs t

Palo Alto OSPF neighbor confusion

I have two down stream layer 3 switches both active running HSRP connecting to the active palo alto. Switch 1s interface connecting to the palo alto is set to ospf priority 10, switch 2s interface facing the palo alto is set to ospf priority 5. For s

Security policy Not process user-ID mapping after upgrade 9.0.4 to 9.0.8

PA-820

FW: 9.0.8

Check use-id mapping in CLI returned fine. Check user group mapping fine but security not process user-ID info.

I have nine PA-820. After upgrade from 9.0.4 to 9.0.8, three of them act up. six of them are working fine. Tech Support stil