General Topics

U Turn NAT from External to Internal with FQDN Object

I know how to create a standard U-Turn NAT from outside to inside and that works fine as long as the INTERNAL object is an IP Netmask address.  On the NAT Policy Rule the Original Packet is a static IP on my external facing range.  The Translated Pac

GlobalProtect Certificate Profile not on Gateway and Portal

Is there any specific why someone would configured a certificate profille only on a GP Gateway and not on a GP Portal  (or vice versa)?

In tutorials or videos, I've always seen it configured on both, but on some networks I've seen people only configu

Traffic for frontapp.com getting blocked

Hello,

We need some assistance in allowing URL: https://frontapp.com through our FW. It is hitting the interzone-default policy and getting blocked. We made sure the category: computer-and-internet-info is allowed. Also, tried adding *.frontapp.com i

Raw log file extraction

Hi All , 

Can anyone tell how to extract  old the log files from CLI , is there any dirctory to reach which contains log file please provide us the path . 

SNMP problem

Hi everyone

I have a palo alto device with snmp configuration to send snmp packets when something happen (for example when an interface is down or up), the problem is when an interface is down the snmp server does not see snmp packets and if I make a

How to deploy CA Palo Alto for non-join Domain!

Dear All,

we have done to install PALO ALTO 3020 on our network, but I have a problem as follows.

Now I have minimum 150 PCs not join the domain, and we need to deploy the CA for all of them by the automatid way!!! 

everyone from this PCs has a User Na

Multi Rule Edit

Is there a tool out there to perform multiple rule edits? OR am I forced to do a "find & replace" method by copying CLI? In this case, I'm trying to enable log session at end for all rules. 

Log-collector on 8.0 and panorama/FW's on 7.1 - Compatibility?

Anyone tested this or know if it is documented on the compatability or not with 8.0 on the log-collectors but everything else on 7.1.

I know the rule of thumb that your manager (panorama) is to be your highest code version, however with the log-collec

AD trouble after installing content version 729

We had problems with AD after installing content version 729 this morning. Users were authenticated, but the logon process (group policy, drive mapping) was painfully slow. After we reverted to version 727 everything was OK again. The strange thing i

Rule Scenario 80/443 vs using ssl/web-browsing

HI in what Rule Scenario  woulld 80/443 vs using ssl/web-browsing be used. And why wouldnt app for ssl and web-browsing not work but prot 80/443 work

Content update For Appication and Threat

Hi does Palo Alto keep stats on how any times a month or year there are issues with a content release requiring a revert? And if so can those stats be provided or is that something TAM provides ?
3147756365

PAN-OS 8.0.4 - Sporadic Success on Content & Anti-Virus upgrades (PA-200)

All,

I opened a ticket on this with Palo Alto but I thought I would reach out here as well.  Even since upgrading from 7.1.x to 8.0.4 on PAN-200 firewalls I am getting inconsistant success in upgrading Content or Anti-Virus packages.  It's so inconsi