Next-Generation Firewall Discussions

PAN-OS 11 interface counter descriptions

We've recently deployed PAN-OS 11.0.1-h2 in production on some PA-1400's (terrifying, I know).

Practically, the firewalls seem to be functionally identical to the firewalls they're replacing. However, we've noticed that the "receive errors" counter

Stupid question, but how to show all vsys in CLI with one command?

Hey guys, this may be a stupid question but I just cannot find the appropriate command for this after googling for nearly an hour. I just want to display all vsys via CLI in one command without the need of "?". Something like show virtual-system all

ChatGPT and Chromium Browser issues

Per-user exception to pre-defined URL filtering categories

Good morning!

I have a customer with a URL filtering profile blocking several pre-defined categories. A researcher needs to find information that's being blocked on that URL filter. We'd like to open access to websites only for that user. Is there a

Is there tool available to sync the config from physical Paloalto on-premise the disaster recovery site in Azure?

We have onpremise network and paloalto firewalls and zone base zero trust config and we want to have the DR in Azure on virtual firewalls and looking for the way to convert and sync the config from on-premise physical firewalls to Azure virtual firew

Facing packet dropping issue after imported configuration.

 The issue is currently planning to migrate PA220 to PA440.

We have imported the configuration file from PA220 to PA440,  The network is down and facing packet drops 

Data cap limits for users in specific network

Hi, just like the title says, I'm looking to cap data usage for users in a subnet, something like this: https://github.com/hiep4hiep/PANW-Bandwidth-quota, but without having to use scripts, is there a way to do something similar inside the PA firewal

PAN-OS NGFW - LDAP Authentication via Group Membership - Admin UI

Hello,

I'm trying to set up NGFW in a lab environment where all users have an account defined in a centralized authentication store. We're using FreeIPA, which provides authentication services via LDAP and Kerberos.

I've gotten authentication wor

PBF based on URL Filtering/Application

hi everyone,

We have a PBF Rule allow all internal users to internet via our ISP1.

And I want to create another PBF rule on top of the above PBF rule to allow Instagram application traffic towards ISP2?

I look through the below KB but it is not doa

URL Filtering: Categories for Suicide Promotion/Self-Harm Promotion

Hi!

Unless I've been dumb enough to miss them, the Palo Alto URL filtering database lacks a category for suicide/self-harm promotion sites. I've now been asked for a second time if we could block such sites. As a higher education institute, we're r