SSL forward proxy CA cert

My enterprise has a CA root certificate pushed out to all clients. I am now planning to implement ssl decryption and want to import same cert and keys onto firewall for ssl forward proxy. what are the downsides of doing this? is it a good idea to use

How to configure dynamic NAT IPs

I have a german ADSL connection and would like to make it accessible from outside. My server has internally the IP 10.0.109.111. From outside it is accessible via a DynDNS name because the public IP changes daily.
My router has the 192.168.4.1 IP and

What MM version is support currently recommending fo PAN OS 8.x.x version

Currently there is a project to upgrade all Palo Alto's to a 8.x.x platform.

What MM version is support currently recommending fo PAN OS 8.x.x version?

Also need to consider Active directory integration as an option within the upgraded design. How we

Configure DUAL ISP

We have now two ISPs 

And we want to configure PA so that when first ISP is down the traffic (in and out) passed to the second ISP

Can you give me please a guide about it?

Empty Scheduled custom CSV reports

I configured an 'Email Scheduler' for my custom reports which will be sent on a monthly basis. They will be sent correctly in .pdf format, but when I choose .csv in my 'Report Group' I receive empty .csv files. 

Is this a bug or a misconfigured confi

PA VM 6.1.0 Routing issues

The WildFire module price

Hello, сolleagues!

I am interesting in the PaloAlto and I am only starting to use it.

IPlease say where can I buy subscription to the The WildFire module ?

Can I buy only The WildFire subscription or I must buy smth else?

If anybody know where is a page

Generating automating reports through the API

Is there a way I can generate automatic reports through the API on a weekly basis? I know there is a way with GUI, but is there a way for the API to generate automatic reports?

Running MineMeld from OVA

Good afternoon!  I have a quick question about running MineMeld from the OVA.   We have some pretty strict policy against installing via GitHub and, the best way for me to get MineMeld installed, would be to use the OVA method.  I'm new to running it

Not having a Threat license on panos and do the AV and anti-spyware functions even work?

I am a little new to PA firewalls.  My question is, with an expired Threat license, or no Threat license installed at all, is all the functionality of the AV and anti-spyware components not active?  Customer has one with expired license, but I am try