IPSec VPN Negotiation Issues

Dear Members,

Greeting to All!

Curranty, I'm using site to site multiple VPN configuration with Palo alto Firewall to different vendor site. All of the tunnel is working fine VPN ok.

My main problem is inside of my firewall public internet down the

Url access error

Hello Team, I am getting this error in the EDL, also confirm URL and certificate are correct.
Gone thorough this kb : https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-release-notes/pan-os-9-1-release-information/known-issues/known-issues-related-t

Query: SAML Integration Failed

Is there have a way or integration to use a thrid party MFA solution to login to the palo alto firewall as administrator?

Do SAML profile can be added to authentication sequence?

Furthermore, if the saml profile cannot be added to the authenticat

Troubleshooting traffic being blocked based on IP - FQDN rules

Trying to find which FQDN object in my FQDN cache resolves to an IP.

show dns-proxy fqdn all | match <ip> shows me that it's in my cache, but doesn't show FQDN object name, so it doesn't really help.

I'm not sure if there's a way to dump this to a

Check whether PA-220 has already been registered

Hello All,

Is there a simple way to check whether a PAN device has been registered before?

I bought a supposedly unregistered PA-220, however I would like to know if the device has really not been registered before. Unfortunately there doesn't seem t

SAML Integration with Local Authentication

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/authentication/configure-saml-authentication

If the option 5 in step 3 on above KB is mandatory?

Therefore, must the firewall use its own certificate to sign messages where is the public cer

IPSec Tunnel goes Down After Few Minutes

hi All,

I am facing a strange issue with IPSec tunnels built on Palo Alto firewalls.

Scenario:

1. On both ends we have Palo Alto firewalls(various models PA-220, PA440, PA-3220, PA-VM(AWS))

2. Public IP addresses of both ends are always reachable

PAN-OS 11.0.1 Review Polices Link

Hi All

We are running pan-os 11 as a POC and have noticed that the "Review Policies" Link in applications and threats section does not appear to work, the review apps does and all new apps are correctly displayed but the Review Policies link from h

Multiple CDL instances in the same region

Hi Guys,

Can one CSP account have multiple CDL instances in the same region for Firewall Log Service. Use case is the user want to separate logs of different firewalls to different CDL instances. And eventually, also to have multiple AIOPS instance

PAN-OS HA Clustering and Integrated management and logging

Hi, I have questions about PAN-OS HA clustering and management

First, I read the document "HA Clustering Overview - PAN OS Admin Guide". and  I was able to confirm about HA Clustering.

However, there is a part in the HA Clustering part of the PAN