how to block shortened links?

How can I effectively block shortened links on firewall? I can't figure a wildcard url format for them. 

Please advise.

Analyzing Email Traffic on Palo Alto

We have our in house mail server which is behind the Palo Alto, all incoming and outgoing email traffic go through it. Can we analyze the email traffic and get following information?

Sender

Recipient 

Attachment File name

Attachment File Type

Email Subje

HA Data Link Ethernet vs IP

Hi,

When I configure HA for data link I use Ethernet when devices are directly connected to each other, but sometimes in the field I see people using IP for transport but the devices are directly connected to each other. Why are they doing this? Ther

Customer Experience (CX) Day on LIVEcommunity

October 1st is Customer Experience (CX) Day, and Palo Alto Networks is celebrating you, our customer! Join us in this celebration.

Tells us:  

- What great customer experience means to you. 

OR

- About a LIVEcommunity member or Palo Alto Networks e

VPN problem

Hi
i have a problem. i have configured vpn ikev2 ipsec. When test vpn with CLI command( test vpn ipsec tunnel [name]) vpn gets up. But when other side try to connect, vpn do not get up.

Also when i check system logs this logs appears:
'IKE phase-1 negot

PXE boot

I'm trying to get pxe boot to work through the firewall. Now options 66 and 67 are available in palos dhcp server but I can't get it to work anyway.

Besdies normal dhcp options I've setup option 66 with IP and ip-address and option 67 with ASCII an

what is the information contains in md2 partition?

Hello Team,

Meraki Implementation

Curious if anyone has Meraki and a PAN setup.  We are trying to to link our remote sites to the data center.  At the remotes the meraki is the router then in the data center we have the meraki behind the the PA.  We can establish a VPN tunnel and pin

Global Protect not connecting to gateway

I have a Pa220 and its using DHCP for untrust interface. I have followed about 40 documents and knowledgebases and still have no success with connecting my iphone to the palo via global protect. I am using self generated cert. I have collected the lo

What Happens to FQDNs in a Security Policy when DNS Time-to-Live Expires and Device Cannot Reach DNS

 What will happen in that case when DNS server becomes unreachable ?

Would destination server be unreachable ? 

Possible solution if DNS server gets unreachable.

All traffic through LSVPN (or LSVPN route metric)

I want all satellites to route all traffic through VPN tunnel when it's available. In GP gateway if I leave Access Routes emtpy or if I publish 0.0.0.0/0 to the satellite I get the default route with metric 100 on the atellite. But that means the sta

Policy Optimizer Apps

Is it possible to add the apps seen by the policy optimizer to an application group already created? I feel like this should be easy, but I can't seem to be able to do it. It appears you can create new app groups but cant add to current? Am I missing