Proxy ARP for Private VLAN?

Is there a 'proxy arp' interface command (or equivalent) to allow l3 communication between isolated devices on private VLANs?

I am looking to move our DMZ to a private VLAN. I would like all ports to be isolated, but allow some communication betwee

BackUp Firewalls

Hi Team,

What is the best solution to Backup our firewalls? As we have standalone firewalls we need to make sure we have backup collected and stored. Please let me know the best way. Thanks.

Regards,

Sanjay S

HIP match log not found

In pan-os 9.1.15-h1 , I have configured hip object and also called in hip profile, The Agent submits the hip data to the firewall after that also no log is found in HIP-Match log, then even i had changed and try for hip match OS as windows that too h

X-Forwarded-For on Threats logs

what`s mean below article?

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/policy/identify-users-connected-through-a-proxy-server/use-xff-values-for-ip-based-security-policy-and-logging 

For non-URL Filtering logs, XFF IP logging is sup

CIE(Cloud Identity Engine) Deactivated?

Could not understand why the CIE account was deactivated. It was setup to sync with Azure AD and one on-prem DC. And atleast one firewall was configured to use it. 

Is this caused by the 3 month certificates?

Also are these certs meant to be renewe

Palo Alto Service Route config for Dynamic Update/Wildfire/IPS

Hi,

What service source interface I need to change for IPS /Dynamic/Wildfire Update ? We want to configure custom interface instead of Management interface.
Now I've configured custom source interface for "External Dynamic Lists" and "URL Updates" but

What is the RAM for PA1420, PA3430? Do they have at least 128 GB Memory ?

Hi,

Kindly i would like to ask, What is the RAM for PA1420, PA3430? Do they have at least 128 GB Memory?

I can't find this is in datasheet or hardware architecture.

Thank you.

Inquiry about Firewall Behavior at High Temperatures

I am writing to inquire about the behavior of the 5220 and 3260 Firewall series at high temperatures. Specifically, I would like to know what happens if the CPU temperature exceeds the critical threshold of 60°C for an extended period.

I have a few q

External Dynamic Lists

Hi PA community.

I would like to start using third party External Dynamic Lists in addition to the built in Palo Alto ones.

Any suggestion of which IP, URL and Domain lists can I use?

Thanks in advance.

IP Block List Feeds

We're looking to add a dynamic block list rather than manually blocking bad IP's as we find them.  I understand that Palo Alto comes with one or more of these feeds, do we know how often they are updated?

Asking for a friend.

how to stop sending duplicate user-ip-mapping by xmlapi

hello..
we are using UIA and ClearPass (login/loginout type) to get user-ip-mapping.

the issue is Palo Alto firewall is receiving duplicate user-ip-mapping.

user-A (using) : 192.168.1.100 receiving from User ID Agent correctly.

user-B(not using): 192.

Device Telemetry can't be removed/disabled from Panorama and/or local

We currently have difficulties to remove the Device Telemetry options in any way. it seems as this Options doesn't work as expected. This issue persisted across several Versions of PanOS / Panorama 

Panorama 10.2.2-h2

- When trying to remove the de