Software EOL 10.2

10.2 is listed on https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary#pan-os-panorama as having an EOL in August followed by a limited support EOL in 2026.

It's notated as continuing to be supported on ce

Palo Alto Networks Cloud NGFW Sentinel Integration High Level Architecture

Here is a reference architecture illustrating North South traffic inspection scenarios when integrating with Microsoft Sentinel

PANOS exposure API?

Anyone know of an API exposure of the information presented by 

Security Advisories | Palo Alto Networks

and/or

Palo Alto Networks Security Advisories

The goal is to be able to maintain a database of exposures and affected products/versions suitabl

Load balancing using ecmp

Hello All,

Configure load balacing between 2 isp router following below link using ecmp protocol. Now we have below requirement

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClF8CAK

site to site will be from secondary isp l

Palo NAT Question

About the setup:

1. Both DC's are connected to partner via IPSec tunnel

2. Always prefer DC-1 & use DC-2 as backup

3. Panorama mgmt IPs gateways is on core switch

4. Palos point traffic to mgmt subnet towards core switch

5. Vendor access panorama using 3.

Azure VM-300 Firewall subinterfaces and multiple VNETs

I am running a VM-300 series firewall in Azure. I currently have 4 interfaces on the device (management, HA, untrust and trust). In Azure I have 8 VNETs. I would like to send all VNET to VNET traffic to the firewall for inspection and policy applicat

How to block traffic from a specific ASN using DAG

I could use some assistance since AI sucks and gives you the wrong info.

Here's what I would like to do, we already geoblock but I need to block malicious traffic (multible IP ranges) that's associated with a specific ASN.  I've tried creating a dy

IPv6 and TLS 1.3?

I've been having some IPv6 issues (we're a dual-stack setup currently), and it seems like every time I fix one, I find another.

The latest is an issue with some, but not all, IPv6 websites. Sometimes they'll load... sometimes they'll start to load

NAT Translations Related to VPN Tunnels

Thanks for any help in advance.  

We have many partners that we create VPN tunnels with.  To save time and to avoid IP overlap, I would like to dedicate a private subnet like 10.10.0.0/16 and route that subnet toward our Palo firewall that terminat

User-ID Integration with AD Failing (Access Denied / Kerberos Errors – Event ID 10036)

Hi Team,

I'm working on integrating my Active Directory (Windows Server 2016) with a Palo Alto PA-450 firewall to enable User-ID functionality. While setting up the server monitoring configuration, I'm running into issues when using both WMI and WinR

URL filtering - allows blocked traffic

URL filtering logs show web traffic that matches a custom URL category that we use to block / deny traffic to certain malicious domains, but the traffic doesn't match  the deny rule, it matches a generic rule we have for https/http traffic.

Why would