How to read palo alto config file? Is there any free tool which is available ?

I m looking for a application or tool to read palo alto config file. Specially, we required to perform manual firewall review.

I have a nipper to find all configuration and security issues. But we are not able to understand by looking into this confi

2 factor authentication issue on Palo Alto Global Protect client

we need support from Palo Alto to understand the following issue:

A portal and gateway profile has been created for ¿internal¿  users and ¿external¿ business partner users. All users need to authenticate using OTP (One time passcode). By default users

question about global protect

Let us assume that you have users in your company and they have company comps with global protect client installed

They take their notebooks home.is it possible somehow by global protect to forbid connect to home internet without using GP?OR is it pos

No metrics showing up in a syslog analyser node

Hi,

I followed this post the other day and have been forwarding logs from my firewall for 2 days now, but without any hits, so I am wondering if I have done something wrong? I can see in a tcpdump dump on the minemeld server, that logs are received

Reason: User is not in allowlist

User 'steven.williams.da' failed authentication. Reason: User is not in allowlist From: ltdlqq6h2.domain.lan

short name: domain\paloaltoadmins
source type: ldap
source: Network_Administrators

[1 ] domain\steven.williams.da

Authentication profile contain

Panorama Commit Fail With Error: Duplicate Service group

Hi all,

I'm trying to Transition an existing Firewall to Panorama Management and I'm following this guide - https://www.paloaltonetworks.com/documentation/80/panorama/panorama_adminguide/manage-firewalls/transition-a-firewall-to-panorama-management/m

Custom traffic-to-destination report

I am having some trouble creating a custom report that to me seems like it should be a simple and typical report. I have a block of 10 destination addresses added into an address group and I need a montly report generated that just shows the total am

Remove IP Address from Subinterface with CLI

I'm trying to remove an IP address from a subinterface using the CLI.

Command I'm using is: 'delete network interface ethernet 1/8 layer3 units ethernet1/8.3624 ip x.x.x.x/29'

When I run this command, I get a message saying:

'No object to delete in del

Comparision with other vendors

I would like to know is there any document of battle between Palo Alto Networks NGFW and other vendors (Cisco,check point,fortinet).I cant find the the latest info about it.It can be very usuful when talking with customers.And also i would like to ge

Why would new span port all of a sudden stop traffic between zones from flowing (no logs at all)

Why would new span port all of a  sudden stop traffic between zones from flowing (no logs at all) works after span is rule is disabled.