opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.paloaltonetworks.com, Reason: unable to get local issuer certifi

Hi, we are getting the following 2 x alerts on the same firewalls, can you please let us know how this can be fixed - googled it but I couldn;'t find a fix:
alert1:opaque: CloudAuthService Server certificate validation failed. Dest Addr: license.api.p

DNS Servers Failure

In the Palo Alto firewall, we are unable to reach the DNS servers. These servers are in the cloud and act as proxy servers as well as domain controllers.

From our VMs, we are able to ping the DNS IPs successfully, but in the firewall session logs, it

DHCP configuration with ip 192.182.1.0/24 network

Hi team, as we are getting a use case of DHCP configuration with Ip 192.182.1.1/24, are we able to configure DHCP server with this Ip which range starts from 192.182.1.2- 192.182.1.254/24? as this Ip considered as public Ip

Chromium-based traffic issue

Hello Experts,

Our client experienced a drop in internet traffic. After running tests, they detected that all traffic generated with Chromium-based browsers was being dropped by the firewall for some unknown reason. Other traffic generated by other b

is there is a limit to nested app groups? (how many nested groups can be inside each other)

Licensing a Palo Alto device bought from a market place.

Upgrade of software

Good day

I am presently on Panos 11.0.1-h2 for over a year. What is the upgrade path so that I can upgrade these firewalls to the latest version

S2S between PA3250 and Azure VPN Gateway -1 way traffic

HI everyone, for a long time we have had a functioning VPN gateway between our on premise 3250 and and Azure VPN Gateway.

Recently, we have observed that appear to be unable to send traffic from the PA side, to Azure. Including return traffic.

Here

RealNetworks RealPlayer MPG Width Integer Underflow Vulnerability - 91059

Hi Community,

A MPEG file trying to sync on One Drive but is being blocked by Palo Alto. 

Here is the signature RealNetworks RealPlayer MPG Width Integer Underflow Vulnerability - 91059 being the reason.  File is legit, what could be the reason o

Firewall Policies App Dependencies Order

For app dependencies is it better to include the dependency in the policy with the dependent app each time or to make an allow rule for all dependencies first? 

Say I have two app policies for different apps that each use SSH. Should I include SSH

Firewall query

I have a Meraki that has a SVI for vlan 5, 172.18.5.2 and it's trunk to a firewall that also has an SVI for vlan 5 172.18.5.1. There is a default route from Meraki pointing to 172.18.100.1 which is on the firewall. Meraki has an SVI 172.18.2.1. Serve