Feature Request List

Hi community

In a lot of topics there are discussions and questions about PAN-OS enhancements and missing (not yet implemented) features. So far the PaloAlto Feature Request list isn't available to the public but in a lot of these existing topics f

Clarification Needed on Multiple Static NAT Rules with the Same Public IP Address

Hi Community,

I’m working with a customer who had previously configured a dynamic IP source NAT rule with only one address in the pool. This setup worked as expected for just one PBX since after the first session, the public IP would be in use, limit

Restrict Individual Administrators by Interface or IP

Is there a way to restrict access for specific administrators by interface or IP address? I really thought I'd seen this somewhere, but now I cannot find it in GUI or docs.

Quick explanation of what we want to do. We want to have a sort of backdoor, e

OSPF Adjacency Fails Post Upgrade - needed new rule

OSPF failed recently after an upgrade and required a new rule to allow the ospf application between our NGFW inside zone and our core router. We moved from version 10.2.7-h8 to 10.2.7-h18 . Anyone ever seen this? 

-Nathan 

Building Cybersecurity Strategies: A Game of Digital Mahjong

Hi everyone,

Lately, I’ve been thinking about how designing a strong cybersecurity strategy feels a lot like playing a complex game of Mahjong: every move matters, timing is crucial, and one wrong tile can shift the entire outcome.

With AI-driven aut

Restrict Access to Box Account

Hi Team,

We have a requirement to restrict the access to box account only when they get re-directed to box account from one particular website.

So for example.

User logs in to Facebook.com and need to upload a document. In facebook there will be a li

Palo alto 1410 software update

Dear palo alto team,

I would appreciate your advice, please.
We are currently using a Palo Alto PA-1410 running on software version 11.2.3-5h.
However, when checking for updates, we found that 11.2.4-h1 until 11.2.5.

Could you kindly advise whether we

QUIC decryption? A TCP replacement

It seems like QUIC is going to become main stream, Its not just this linked video, I am seeing QUIC related stuff increasingly now. As per docs I see even for 10.2 its advised to block udp 80/443 and block QUIC. I would guess Palo Alto bringing QUIC

PA 1420 Firewall DRAM Information

Hi

I want to know about DRAM capacity of PA 1420 firewall. I've checked the datasheet and hardware architecture document but didn't find DRAM information.

URL citrix.rsieh.com is inaccessible through firewall

Hi Friends,

1) One of my customer is trying to access https://citrix.rsieh.com, although it initially opened, and it was soon redirected to https://sso-fe2eb653.sso.duosecurity.com/saml2/sp/sso and site is getting inaccessible through firewall

2) Thi

User-ID two usernames being identified by User-ID servers

Hi,

I am having troubles with getting the Palo's in my network to only use the UPN of a user in our environment. I would like to start creating security policies to control staff members access to resources based on their AD user rather than IP addres

Error in MineMeld preventing communication with Palo Alto, displaying a URL error.

Hi team

Can anyone help me? I'm having trouble integrating Minemald's EDL into my systems.

Regards

Site to Site VPNs HA

Hello team, currently we have 2 VPN S2S, one as primary and the other one as secondary.
Primary uses our primary ISP againts primary ISP from my peer, tunnel10, static route metric 10
Secondary one uses our secondary ISP against secondary ISP from my p