Destination NAT with multiple server.

Hello Team,

I have configured destination NAT in my environment with one server.

Now i can see the number of users increases and too much traffic i am getting in one server, so i want to configure 2 more server with the same services.

For example:-

If

URL Filter Inline Categorization SLOW/DELAY - troubleshooting?

Since updating to PAN-OS 10.2.8 (and subsequently 10.2.9-h1), we've had numerous complaints of slow website access.  Outside of the firewall it works fine.

I've since narrowed it down to a problem or issue with the URL Filtering Inline Categorizati

Dispaying object name in traffic monitoring

Hi,

I would like to know if it's possible to display object name associated to each address in traffic logs. I cant find it in any columns but i'm wondering if there is another way to do it. In fact, we want to organise the logs to have a better visi

Stats dumps api period time

Does anyone know if there is a way to export the stats dumps with API, with a periid time 30 days? 

I tried in this way:

setting up multiple internet connections

Hi everyone. I have a PA-220 firewall. It is currently connected via interface 1/8 to an internet connection that I will soon have to discontinue, and which I will call GW1 here.
At the same time I

No logs in the monitor > traffic tab?

Hello All,

1.) I have just installed Palo Alto 7.1 in Eve-NG, and  made two interfaces as Vwire with zone Trust and Untrust.

2.) I am able to access access everthing (e.g. internet, ping, etc.) hence policies are working fine  as I have created a polic

Update Panorama

Did not found any email to write Palo alto PAN-OS developers that hence writing here on feedback on palo alto Panorama update.

After finishing update panorama then against the version we update it gives option of "Re-Install" by clicking on that it

IPSec IKEv2 multiple events per second

Hello everyone,

I see many events per second for a site-to-site IPSec tunnel and am unsure if it's normal. The below events have a severity level of informational but go over and over in a second.

My question is, is it normal? if not, where should

BGP Advertising prefix to same AS it was learned from.

I'm working on a VRF-centric DC model that utilizes a PA as the firewall platform between VRFs. One of the snags I'm hitting is that if a route is learned from R1 on an AS (say 65001), and is advertised via eBGP to the PA (AS 65002), the PA won't eve

Unnown-TCP application "commvault"

Hi Guys, 

I hope you guys can help with classifying unknown traffic. 

I have read many forums for this topic none of which answer my specific question. I understand that should create a custom app if your application bespoke and it is unlikely that a

block / allow url list

Hi Team,

Is there any way to get the list of URLs that have been blocked by the Palo Alto firewall?