QoS on Tagged VLAN Sub-interface - PAN5250

Hi, this question may have been asked before, but I'm still curious what the best practice is in my situation.  Here's what I need to do: a LAG (port-channel) with two 10gig interfaces is carved into mulitple subinterfaces.  I'd like to cap the max b

Global protect IP address

GlobalProtect gateway client configuration generated. User name: bozo, Private IP: 136.176.144.x, Client version: 4.0.0-90, Device name: clownmobile, Client OS version: Microsoft Windows 10 Pro , 64-bit, VPN type: Device Level VPN.

Why is the PA clas

How verdict is conveyed back to firewall

Hi,

Please can someone clarify how the firewall recieves the verdict of files forwarded to WF.

Thanks

SSL CSR SAN Multiple Uses

PA-5220, 8.0

I need to generate a CSR for a cert that will be used for multiple things - web gui admin, globalprotect vpn, etc. The instructions for how to gen the CSR with subject alternative names are not clear.

Should the common name be one of the

Region making autocommit fail

Does anyone know of a issue with configuring regions in security policies causing the autocommit to fail?

How to easily switch between multiple GlobalProtect VPN profiles???

Forgive me if this question has been asked before.  My searches did not turn up any useful items in the discussion groups.  I work for a company who supports multiple customers that use the GlobalProtect VPN.  As an end-user, changing from one VPN po

Panorama 8.0.7, Losing Templates following Import Device Configuration to Panorama

Experiencing some rather odd behaviour when Importing Device Configuration to Panorama

In short what I'm witnessing is the loss of Templates (Device + Network), as soon as import is completed. The result is same whether I check the Import Shared Obje

How to Enable WildFire to block jar file with 'malicious' Verdict

Hello Everyone,

New to Palo Alto firewalls and new to this forum.

Can I please ask how I go about changing the Wildfire action on a jar file to block?  The action for this file has been to allow the file, despite the file being flagged as "malicious,

Url Filtering for all subdomains except one specific one

Hello,

Is it possible to block all subdomains, except for one specific subdomain, via URL filtering?

For example block *.yahoo.com, but allow sports.yahoo.com

Thanks in Advance for any advice.

Cybersecurity Thoughts

Hi,

I have recently read many Plao Alto and TrendMicro research articles, predictions and reports on subject of cybersecurity. Regardless of personal opinion there are possible catastrophic results that could happen in case of abuse of certain sectors

PA-5220s Active/Passive HA with Single VWire but multiple vSys's and Zones

Hi folks

Have pair of 5220s in Active/Passive HA. I'm reading that multiple zones cannot be used on VWire, well actually i'm finding that documentation not so clear and it could be functionality added in later releases of code.

Anyway let me try to e