Issue FQDN address with dns records with short TTL

I have configured a firewall rule to allow some servers  to ssh to vs-ssh.visualstudio.com to allow the servers to use ssh to connect to the git repo of Azure devops.

This rule uses fqdn address object to allow the servers to only connect on ssh to t

ECMP + 3 Internet links + Outgoing traffic

Hello friends!

We have now 3 ISPs, we started to use load balancing (all methoeds tested);

Problem: Sometimes, packets from PA220, interface 1/4 (ISP 1),  goes out to internet thru interface 1/5 (ISP 2).

User's traffic with no problem.. But PA220 inte

Local Support for Pan-DB

Hi All,  a client of ours lives in SouthEast Asia and is looking to purchase Pan-DB and wonders if they will need to rely on local support there, which is very spotty.  It looks like this community and the support side of things is very strong.  How

MS Update ActiveX Cab file Denied?

Hello.

I just reloaded a Windows 7 x64 computer.  The first check wants to update the Windows update agent.

For some reason PA blocks it as a ActiveX Cab file.

The first check allows, but the it's denied. (picture attached).

I added a Virus exception fo

DLP Options

Im exploring some various DLP options for one of my clients. Im niot finding much in regards to DLP functionality on Palo Altos (I have a pair of 3020's) 

Does anyone know what Palo Altos DLP solutions consist of? If any?

Im primarily concerned with th

useful custom reports

Hey all,

I want to create some custom reports to get more useful information about what is going on in my network.

I would like to know - just informational - which reports do you use in your daily business?

Respectively which reports you consider as us

Where is the BPA tool located??

I want to run BPA reports against my configs but I can't find the tool anywhere???

I know it exists as I have a Initial Analysis from our 3rd party supplier, but I would prefere to cut them out of the loop.

Any ideas?

Cheers

Rob

Reassign PA-VM EVal license to new vm firewall after rebuilding the VM

How can reassign the VM Evaluation authorisation to new PA-VM after rebuilding the VM firewall?

Kind regards Zoumana

Dynamic group from panorama.Vm info source

Hi,

We realised that vcenter fields are not being updated when we create a dynamic address group in panorama. From the fw is working fine and values are refreshed in real time. The method we use to monitor vcenter is VM information source.
So we dont k...

PVLAN with Palo Alto?

I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation.  Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN.

I've got some Nexus9K switches with Layer 3 licensing in HA an