What is current PAN OS version is target or recommended

Please recommend

Dear all,

Can you recommend to use 200 users for PA firewall? What kind of firewall we should use for 200 users?

Best regrets,

Cardi Moe

Does PANOS is impacted by DNS Flag day ?

Hello community,

Do you know if PANOS is impacted by DNS flag day ?  I know CheckPoint and Juniper SRX are impacted by this change DNS config. But I do not see any info provided by Palo alto about that.

Best Regards

Andres P.

Suggestion for Panorama update

Within Panorama, while managing client firewalls, routinely the customer wants some variation of the built-in URL category restrictions. While it is great to have so many categories and for the most part they are well apportioned. However, to get aro

Panorama Dynamic Updates SSL Connect Error

After upgrading some of our firewall and Panorama to PAN OS 8.x, we cannot push out dynamic updates from Panorama anymore.  We are still able to push out dynamic updates to firewalls running anything below PAN OS 8.x, but nothing within the PAN OS 8.

User-ID: Require some guidance on best architecture for UserID deployment

Hi everyone.

We currently have a small rollout of UserID across 2 of our firewalls across 2 sites. I think there are some gaps in performance and redundancy and I'd like people's opinions about the best way to deploy UserID.

Bit of background about ou

URL Filteting question

We received an alert about the behavior of the virus.

The malicious loader is downloaded from the URL of compromised legitimate sites, where it is disguised as an image.
The URL by which the malicious loader is hosted, all addresses end with the strin

Passive Node not showing recent config

Hello,

We have a cluster of two palo alto 850, the passive node is not syncing config with the active node despite dashboard claiming they are in sync. Pushing the config from panorama is successful however the passive node does not show the most rec

User-ID & Fast User Switching?

Is there a best practice for making the Palo able to realize who is currently actually logged onto the machine, or are we forced to disable Fast User Switching for this?  (Windows 10)

I know currently that if user A logs in, it knows it's A.  If we s

Securing Private Keys with nCipher HSM

We have been trying for months, unsuccessfully, to complete our integration with the nCipher HSM (formerly Thales nShield) in order to protect the private keys for SSL Forward Proxy. The firewall is connected and authenticated to both the HSM and RFS

How to install self signed certificate to Android phones

hello all

after upgrade to new GP 4.1.8 there is some kind of problem

The phones try to connect to portal and gateway and after it we get security warning but we continue and get connected

But then when we try to connect ones more the GP says it is fail