my OneDrive for Business get block

HI

I try setup a policy to allow traffic for OneDrive for Business. but the traffic all just incomplete. My PAN os is 7.0.1, I allowed all onedrive, sharepoint, sharepoing online, office365, ssl and web browsing, but still cannot communicate with oned

Disable NAT from Untrusted to Trusted device

Hello!

I am trying to port forward port 25 traffic without a NAT to an email security appliance behind the firewall. The problem is when SMTP traffic is forwarded through the Palo Alto the client-IP address of all e-mail going to the email security a

daemon and processes.

Hi team,

I would like to know why Daemons and processes ids are getting suspended or not working.

I can see that which daemon stopped working by this cmd, 

and for example: routed is stopped and i have restarted the routed

Global Protect Gateway certificates when using SAML

We recently switched to using SAML (ADFS) authentication for connecting to our Global Protect Gateways.  These GP Gateways have a SSL/TLS Service Profile with a certificate signed by a CA created within the PaloAlto firewall that serves as the portal

packet loss

Hi,

when I am downloading file from internet , I can see lot of packet loss and congestion in wireshark capture analysis .

I want to make sure PA is the culprit 

How can I verify this  . 

I  have disabld QOS on PA

Thanks

Errors when adding indicators to node created with stdlib.localDB prototype

I created simple node based on stdlib.localDB prototype but getting error when manually (0.9.70) . I did same thing on my other minemeld  0.9.52 without any issue. What could be root cause, how to troubleshoot it ?

Convert from Cisco to Palo

I downloaded the expedition to ubuntu. I am have everything running. When asked to Upload a Panos or Panorama configuration XML file. Export it from your device. What template can I use for this. I have a cisco ASA .txt file I would like to convert.

Questions about FIPS-CC Mode

Greetings all,

We've got a department on our network using a piece of higher-security software.  The software audit came back and indicated FIPS 140-2 encryption is required when the traffic is going across any network other than ours.

I've started l

File Type "Unknown Binaries"

We just need to know the wildfire file type which is allowed to dynamic analysis.

As I know the following URL described allowed file type for sandboxing but what happened with unknown Binaries ( unknown Extention ) when it classified as an unknown fil

Allow traffic to specified hosts/networks when Enforce GlobalProtect enable

Hi,

I want to use the feature Enforce GlobalProtect for Network Access. 

Outside the company, users must use Global Protect to network access, but when users are on the company site, they should be able to access the local company network.

For that I

Global Protect Multiple URLS for Internal and External users

Hello team ,

I have a  GP cluster Gateway and Portal .

Currently we are using a single URL   : vpn.abc.com   for both Internal and External users .

Now we want to use another URL for External :   Partner.abc.com

so do we need to create a new Portal a

global protect client certificate

Hello Team,

We have a global protect portal and gateways running . GP is currently integrated with AD. The certificate on GP is a wildcard signed by an external CA. Currently no certificate check is being made and authentication is purely on basis of