Policy Optimizer Additional Apps

Hi, we have Policy Optimizer enabled and looking at the data there appears to be 'seen' apps that are not actually allowed by the rule:

I'm thinking someone edited the rule (from perhaps 'any' to 'sip') but cannot confirm in the logs (rule is also s

Understanding AppId Dependency Implications

I've run in to a few instances where I need/want to allow a specific App with a specific policy, but it has a dependency I don't want to include with the same policy. I'm wondering if I need to rethink how I arrange these rules.

The most recent examp

PANORAMA PA Firewall Management -> entire backup of the Firewall Running Config

Hi,

we are managing a pool of PA Firewalls using Panorama.

Some of the settings are pushed to the managed devices via Templates (i.e. several additional users, shared objects, etc.).

Device Config is saved on a regular basis on the device itself as w

SFP + modules for PA 5220

Hello we have PA 5220

and we need to connect SFP+ modules.We have Finisar SFP plus module but it does not work

Can you recommendme any third party SFP+ module which is sure to work

Filter default route

WE have configured OSPF between a Palo Alto firewall and the CORE to which it is physically connected, within this CORE there are several VRFs that interconnect with the firewall (VRF1, VRF2, VRF3). Is there a way to filter the default route in the P

why policy for captive portal redirection has no hit counts

We are using MFP for port 22.

we have CP configured and also we have rule in PA to allow traffic for CP url on specific port.

But we see no hit counts on this rule

If i remove the rule then CP redirection does  not work?

Can someone please explain this

Traffic showing from same zone

Communication performance issues between zones

Hi

I have a firewall configured with different zones (users, servers-prod, servers-dev). At network configuration level, 4 network interfaces are linked to 1 aggregate  group and under this aggreate group, I have on subinterface linked with each secui

Global protect VPN

Hi,

We are using Global protect VPN. Whenever we connect the VPN  with office network the system gets slow and we run any command it takes a lot of time to run.

Whenever we connect the VPN  with an open network the commands and the websites are working

WiFi calling will not work

Has anyone already got wifi calling via PA to run? I see in the session log the connections udp 500 and 4500 but wifi calling does not work on my iPhone 8. I have already excluded my AP, that's not the reason. At home router with itss integrated AP i