GlobalProtect Split DNS configuration

I'm looking to configure split tunneling and DNS in the following way:

If the DNS request is from a defined list, send the query to the tunnel DNS servers, if not, send through local adapter DNS. If the resulting reply contains an IP in the defined

Palo alto GUI is crashing on chrome browser 125.0.6422.0

I am experiencing an issue where palo alto GUI is crashing on chrome version 125.0.6422.0 when you click on monitoring . This issue noticed in panorama and NGFW with different versions.other chrome version it works fine

Application Command Center (ACC) - Source Regions Map not working

Hello everyone,

not sure about this, but my Source Regions map in ACC is not working, not showing up anything, no colours:

When I over over the countries it will just be shown in orange, but I can't click or do anything. Also all countries a

Need to Export last 90 days logs

Hi Friends,

We have a customer who wants to Export Last 90 days traffic logs from the firewall for Audit Purpose.

We have tried to generate them via Custom Managed Reports but no luck and more over we came to know that there is some logs exporting

Pan-OS end of life list

I am looking to upgrade the software on our firewall to version 10.2.9-h1. I know it has and end of life scheduled for August of 2025. Is that the same end of life from version 10.2.0 through 10.2.9-h1 or does each iteration have its own end of life?

Passive DNS Feature

hi,

Please give me suggestion how to apply " Passive DNS Feature " in PAN-OS 10.0.X version because got link in that it is not suggested to apply this feature on PAN os 10.0.x. please find below link and do needful.

https://knowledgebase.paloaltonetwo

AWS Tunnels Down when We make a Failover

Hello everyone,

I have observed that when a failover occurs on an active/passive cluster the IPSEC tunnels to AWS all go down and take a time to recover.

I have verified that the traffic goes down and does not communicate for a time of about 5-10 min

Error comparing with candidate config

Hi,

We have an issue in our PA cluster. When we try to compare the candidate config in DEVICE->AUDIT CONFIG  we get this error:"
failed to get content for 'base--candidate'"

Version is 10.2.9-h1

PA-850

Hello all,

Could you please give me correct US and EU ECCN for PA-850?

Thank you in advance.

Best regards,

disk image stuck on loading

I am trying to reload an image and it is stuck

Server-Monitoring shows Authentication-failed or Connection refused error

We are using WinRM-HTTPS protocol  in the Agentless User-ID configuration, when connecting to the Domain Controller(s) firewall is using the default port as 88. Palo-Alto firewall version is 10.2.3-h4 .

Server-Monitoring shows Authentication-failed or