General Topics

How to remediate overly permissive any- any rule

• We have an overly permissive rule with Source, destination and ports as Any. We are working to remove this rule but this  is widely used. Please suggest what's the best way to identify the traffic using this rule and to create rules with specific sou

How to setup No-IP Dynamic DNS on Palo Alto PAN-OS 9.0.12

Good day all,

I spent quite some time figuring out how to setup the No-IP dynamic DNS service on my PA-220 running PAN-OS 9.0.12 and I want to share how I did it as it wasn't a straightforward process for me and I am sure it isn't for others either.

Clientless VPN 404 error

Hello everyone,

i installed the clientless vpn and up to the login page everything is fine, but when i click on one of the apps i set it gives me the error "404 page not found", I don't have any kind of traffic log that I can analyze, the globalp

PanOSPA-VM-10.0-PanOS-Firewall username and password

Need username and password for PA-VM-10.0-PanOS-Firewall

Already tried: admin / admin

admin / Pal0Alt0!

Screenshot attached for reference

anyone help greatly appreciated!!!!

LOGIN INCORRECT - PA-VM (PALO ALTO 6.0.0 VMWARE WORKSTATION)

Hi,

I downloaded a file of palo alto version 6.0.0 for VM and I tryed open it with vmware workstation, but could not log in.

Anyone know what username and password of palo alto for VM?

thank you,

Paulo Roberto Aun

How do people manage certificates for the MGMT interface at scale?

Wondering how other manage the SSL/TLS Service profile that you attach under Device>Setup>Management>General Settings at any sort of scale.

We manage quite a few firewall, via panorama, and the intent would be for each firewall to have a unique cer

checkpoint R77.30 to palo450 migration

I plan to migrate checkpoint R77.30 firewalls (40 firewalls) to Palo450 devices. checkpoint is configured in a full mesh fashion. Can someone share some ideas on the SD-WAN configuration that is required between all Palo Firewalls, with the Palo back

PAN-OS System Log - Max MIB size reached: LLDP neighbor addition failed...

Since upgrading to 9.0.X we have been seeing these messages in the system log:

subtype eq lldp

severity eq high

eventid eq 'too many neighbors'

description contains 'Max MIB size reached: LLDP neighbor addition failed for <REDACTED> on interface 715'

Wh

HIP logs to Panorama

I am looking to export HIP logs to Panorama. Firewalls are in Active-Passive mode. Since firewall sync HIP logs in between them I was getting two logs in panorama for each log entry (one from each firewall). Even though I configured active firewall o

Recommended PAN-OS version

Hello, 

I'm running a PA-VM with PAN-OS version 10.2.X and need to check the TAC guidance for preferred / recommended version of PAN-OS

I have tried to access: https://live.paloaltonetworks.com/t5/customer-resources/support-pan-os-software-releas

Palo Alto and Cisco Wireless Controller

Dear All,

We have a Cisco Guest Wireless controller in the DMZ. A tunnel is established by the Cisco wireless controllers in the internal network to the wireless controller in the DMZ. The issue is the Guest users loose their connection intermittently