Hello,
I upgraded one of our PA devices from 10.1.9 to 10.2.4-h4. LDAPS was configured to access and gather user's info from DC. But it stoped working after upgrade. I captured traffic and saw following error - TLS Handshake Failure. I know that star
...
Hello,
We have a site-to-site hub and spoke vpn setup, Palo Alto being the hub and multivendor spokes.
Is it possible that our remote sites are able to utilize the DNS Security feature installed on Hub for DNS Sinkhole?
Palo Alto URL Filtering allows blocked URL categories if one keep refreshing the page. The issue is particularly seen with Youtube.com. We have blocked Streaming Media category and Custom URL to block youtube.com. However the web page is opened after
...
Hi all,
Relatively new to palo and needing to do my first code upgrade. I need to upgrade from 9.1.5 to 10.1.6. This article has confused me a little: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-upgrade/upgrade-pan-os/upgrade-the-firewall-
...
Please check the below snapshots,
we are trying so many KB articles , still it shows smtp connection failure and peer certificate issue
One URL does not access on browser, it shows error timed out. PA-3220 we are using.
1. Create one test rule - Where you allow everything for one source only.
2. Clone the test rule and deny the "Quic" application there and put it above the test rul
...
Does anyone know where in this processing flow does Advanced WildFire Inline ML take place. It would be before the file is sent to WildFire Cloud but would the file be inspected before or after checking the file size?
Also, are email links inspect
...
Is it possible to migrate a running-config from a PA-200 to PA-440 smoothly or would we have to manually configure some settings?
First issue is that the PA-200 is using PAN-OS version 8.x whilst the PA-440 is using PAN-OS 10.1, meaning we would li
...
Hello All,
I currently use 10.1.6 firewall/panorama, and I intend to upgrade every aspect of our infrastructure to 10.2.4-h2 (the preferred version, according to tac).I want to know the main features that separate 10.1.6 from 10.2.4-h2.
Additiona
...
When building an NGFW SDWAN hub-spoke network, SDWAN tunnels are not built between hubs. I was thinking of 2 options:
1) Manually building two tunnels between the hubs and put them in an SDWAN bundle myself, along with the rest of the SDWAN config
...
Unable to access the firewall both GUI and CLI, we are using panorama and we had total number of firewalls connected to panorama around 20 firewalls. Only one firewall getting this issue.
please help us any solution
I'm using the free version of Cloud NGFW for evaluation now.
When I open the Applications (App-ID) configuration window in the Rulestack settings of Cloud NGFW, initially, the "Selected Applications" and "Depends On Applications" options were display
...
Hello! I've had PaloAlto/Okta captive portal authentication working for awhile now. I recently upgraded Okta to Okta Identity Engine, and also upgraded my PA to the latest 10.x.x version. One of those upgrades appears to have broken the Okta/PA in
...
Hi Everyone,
After doing the upgrade I am unable to perform both the dynamic and software update manually. When I click the 'check now' option its keep-on loading. There is no error message. The palo alto firewall is not blocking the traffic. I am
...
PA-5220 came with PANOS 9.1 but the customer runs 8.1 on older Panorama gear. After downgrading PANOS they were setup and run successfully. The PA-5220 was reset to factory default for being deployed in a new location. After reboot waited 24 hours
...
BPry
on:
rulebase -> security -> rules -> permit_common 'permit_common' is already in use
TomYoung
on:
how to export security policy in json format
PavelK
on:
intrazone default
OtakarKlier
on:
Multiple L2 interface with same vlan tags
