Service/URL category

Microsoft Defender has a lot of endpoints it seems. I started a custom URL list with all the URLs needed for defender, created a policy in a global device template and said "Allow any source, any destination, using SSL, Web-Browsing, and windows defe

Agent-less ad user disconnecting

I am using pan os 11.1.2h3 and after upgrade this os, I seeing that some ad user disconnected and they unable to use internet. after pc sign out and sign in again then getting internet and source user getting connected

DDoS Profiles

How does one go about getting the realistic values for your environment to plug into the DDoS profile or even the zone protection profile? How do you see how many SYNs you are getting per second/min etc?

CVE-2024-3400 PAN-OS CLI Check

Runing the following check on device for exploit activity, but it does not give any results.

I run --> grep pattern "failed to unmarshal session(.\+.\/" mp-log gpsvc.log*

No output is given. Is there an output file or something? How do I use the abov

ATP recommend\dis

Hello,

We're currently using Threat Prevention (TP), which is performing well. We've caught dozens of threats and are satisfied with its effectiveness.

I'm now exploring Advanced Threat Protection (ATP) and, to be honest, I'm struggling to make a cle

Issues with Captive Portal / Continue URL Filtering Response page on 10.1.12

Upgraded 30 days ago to 10.1.12.
~14 days ago started getting complains from users that sites are broken - getting "site cannot be reached".
Sites that cannot be reached are site we specifically have "continue" action in our URL Filtering profile for

Rule UUID mismatch in Policies and Traffic Logs/Discrepancy in Rule UUIDs within Traffic Logs and Policy

Dear Team,

We have 2 * PA-5250 Firewall Appliances configured in Active-Passive and managed by Panorama. PANOS version on both the firewalls and Panorama is PANOS: 10.1.12.

Issue:

I've noticed an inconsistency where the Rule UUID displayed in the

NAT configuration

Hello

I would like to have your support to help me for NAT configuration for both scenario

Scenario1

Our customer request to create an IPsec tunnel between us (mycompany) and Customer. Our users need to reach Web server hosted on Customer site vi

Failed to handle CONFIG_UPDATE_START

Hi All,

I am getting this error while committing (Failed to handle Config_update_start)

I have also gone through kb's articles where i found this is due to high dataplane utilisation.

this error occurs due to High dataplane which increases from  ED

PA-5450 MGT-A and MGT-B Management Ports configuration

Based on the PA-5400 MPC Component Descriptions, the MGT-A and MGT-B management ports are bundled by default as a LAG:

"Two SFP/SFP+ management ports providing 1/10GE connectivity that are used to access the management interface. MGT-A and MGT-B ar

Help me to fix this issues /possible solution

 I am going to configure  Palo alto 5250 firewall to   branch   Huawei router  

The device is not physically connected ,  i try to  do static route from Palo alto to  Huawei router router but the network is not reachable.

kindly support me how to f