Does PANOS is impacted by DNS Flag day ?

Hello community,

Do you know if PANOS is impacted by DNS flag day ?  I know CheckPoint and Juniper SRX are impacted by this change DNS config. But I do not see any info provided by Palo alto about that.

Best Regards

Andres P.

Suggestion for Panorama update

Within Panorama, while managing client firewalls, routinely the customer wants some variation of the built-in URL category restrictions. While it is great to have so many categories and for the most part they are well apportioned. However, to get aro

Panorama Dynamic Updates SSL Connect Error

After upgrading some of our firewall and Panorama to PAN OS 8.x, we cannot push out dynamic updates from Panorama anymore.  We are still able to push out dynamic updates to firewalls running anything below PAN OS 8.x, but nothing within the PAN OS 8.

User-ID: Require some guidance on best architecture for UserID deployment

Hi everyone.

We currently have a small rollout of UserID across 2 of our firewalls across 2 sites. I think there are some gaps in performance and redundancy and I'd like people's opinions about the best way to deploy UserID.

Bit of background about ou

URL Filteting question

We received an alert about the behavior of the virus.

The malicious loader is downloaded from the URL of compromised legitimate sites, where it is disguised as an image.
The URL by which the malicious loader is hosted, all addresses end with the strin

Passive Node not showing recent config

Hello,

We have a cluster of two palo alto 850, the passive node is not syncing config with the active node despite dashboard claiming they are in sync. Pushing the config from panorama is successful however the passive node does not show the most rec

User-ID & Fast User Switching?

Is there a best practice for making the Palo able to realize who is currently actually logged onto the machine, or are we forced to disable Fast User Switching for this?  (Windows 10)

I know currently that if user A logs in, it knows it's A.  If we s

How to install self signed certificate to Android phones

hello all

after upgrade to new GP 4.1.8 there is some kind of problem

The phones try to connect to portal and gateway and after it we get security warning but we continue and get connected

But then when we try to connect ones more the GP says it is fail

EDL for Free Email services?

I'm looking for an EDL that would have all the free email services (@gmail.com, @yahoo.com, @hotmail.com, etc..)  Is anyone aware of anything like this, that is maintained, or would we need to build something?  

Packet drops in LAN interface,..

Hi All,

For a 5 minutes we are unable to access internet ( even not able to ping next hop router), We observed that there is a packet drops in PaloAlto LAN interface, below snap shows the same. Can any body give the reason for this packet drops?

Please

why is interface has no zone configuration？

Configure the following alarms
The interface also cannot ping

Where is the configuration problem?