PA3020 fans always running at 100% speed?

First thing I noticed when I plugged this in was that it's very loud. Normally a device spins down the fans when it's at a cool temperature (which is pretty much all servers and appliances from the last 10 years).

So is there any way to change the fan

Disable Application Packet capture

I am having firewall managed using Panorama .

I am planning to disable application packet capture on specific device .

Can i do using panorama or need to do from individual firewall.

Thanks  

Tackling Google Stadia

Greetings all,

As I'm sure most are aware Google launched Stadia this week. Has anyone had any luck with blocking access to this service without hindering the use of other Google resources? I know this will be a temp fix due to eventually it will be

Zone protection for scan up / ports from internet ( untrust)

Hi ,

Anyone enable zone protection for protect and drop scan ip and ports from untrust / internet to DMZ or untrust ?

i enabled it but I have alerts only from DMZ to untrust and not from untrust to DMZ or untrust to untrust.

Unable to delete Certificate

Hi

I need to delete a certificate from a PA-3050. The certificate is currently EXPIRED. When I try to delete it it says this message

     1- Failed to delete Certificate - MYCOMPANYWildcard 2014-2017-FOR_DELETION.
  °  MYCOMPANY Wildcard 2014-2017-FOR

Palo Alto HA in an Azure environment

Global protect on MAC, with proxy settings

In our company, we do not allow split tunneling and access to Internet(while on VPN) happens via only proxy. We are using on-demand mode. 

Once MAC users connect to GP,proxy settings apply. Only browser which works in this setup is Mozilla Firefox. 

I

PA-220 DHCP with reservations

I have this weird issue where if my wireless clients lose connectivity to my meraki AP and then have to rejoin after the AP reboots, the DHCP server on the PA-220 stops handing out DNS servers that are inherited from the untrust port. I have all clie

Suspicious DNS Domain addition

Hello, is there a way to report suspicious DNS domains to Palo Alto for inclusion on the Palo Alto suspicious DNS query list?  we have a domain which various threat intelligence sources report as suspect/risky but it does not appear in the Palo Alto

Need to allow upload files in wetransfer without getting open unnecessary websites

HI Team

Our customer has one requirement that need to upload files in Wetransfer application but its also using the web-browsing application to upload the same file. If i allow the Web-browsing application in policy unnecessary websites are getting o

new CA Sectigo(formerly Comodo) not trusted

Hello. 

We are having a minor issues on one of our customer firewalls performing decryption. 

it seems certain sites. that have a certificate issued by sectigo. 
chain

root: Sectigo

intermediate: Sectigo RSA Domain Validation Secure Server CA

site certific