Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4646 Views
  • 0 replies
  • 1 Likes

Resolved! About PAN-241694

Attention: Global TPM team, Hi, I have a question about PAN-241694.// PAN-OS 11.1.13-h1 Addressed Issueshttps://docs.paloaltonetworks.com/pan-os/11-1/pan-os-release-notes/pan-os-11-1-13-known-and-addressed-issues/pan-os-11-1-13-h1-addressed-issues Q1)How often does this issue occur? Best regards,MasaW

MasaW by L2 Linker
  • 1408 Views
  • 1 replies
  • 0 Likes

Resolved! About PAN-293673

Attention: Global TPM team, Hi, I have a question about PAN-293673.// PAN-OS 11.1.10 Known Issueshttps://docs.paloaltonetworks.com/pan-os/11-1/pan-os-release-notes/pan-os-11-1-10-known-and-addressed-issues/pan-os-11-1-10-known-issues Q1)How often does this issue occur? Best regards,MasaW

MasaW by L2 Linker
  • 715 Views
  • 1 replies
  • 0 Likes

Resolved! About PAN-183404

Attention: Global TPM team, Hi, I have a question about PAN-183404.// PAN-OS 11.1.10 Known Issueshttps://docs.paloaltonetworks.com/pan-os/11-1/pan-os-release-notes/pan-os-11-1-10-known-and-addressed-issues/pan-os-11-1-10-known-issues Q1)How often does this issue occur? Best regards,MasaW

MasaW by L2 Linker
  • 1594 Views
  • 1 replies
  • 0 Likes

Resolved! About PAN-303627

Attention: Global TPM team, Hi, I have a question about PAN-303627.// PAN-OS 11.1.13-h1 Addressed Issueshttps://docs.paloaltonetworks.com/pan-os/11-1/pan-os-release-notes/pan-os-11-1-13-known-and-addressed-issues/pan-os-11-1-13-h1-addressed-issues Q1)How often does this issue occur? Q2)After this issue occurs, do the LACP interface failu...

MasaW by L2 Linker
  • 1635 Views
  • 1 replies
  • 0 Likes

Resolved! About PAN-305301

Attention: Global TPM team, Hi, I have a question about PAN-305301.// PAN-OS 11.1.13 Known Issueshttps://docs.paloaltonetworks.com/pan-os/11-1/pan-os-release-notes/pan-os-11-1-13-known-and-addressed-issues/pan-os-11-1-13-known-issues How often does this issue occur? Best regards,MasaW

MasaW by L2 Linker
  • 1578 Views
  • 1 replies
  • 0 Likes

Resolved! Chrysalis Backdoor

Hi All, just aware of this new threat. Apparently there are some IPs we can scan on PAN to see if we are affected? Any suggestions are greatly appreciated. Thanks. Ql

Qui by L2 Linker
  • 1063 Views
  • 2 replies
  • 0 Likes

Chatgpt enteprise login only

How are people policing logins to Chatgpt for enterprise only logins?https://help.zscaler.com/zia/adding-tenant-profilesZscaler does it. Palo does it for microsoft.....How are people doing this with decryption and Palos native app id, NOT the ACE subscription?Is this possible?

Sec101 by L4 Transporter
  • 3470 Views
  • 1 replies
  • 0 Likes

Unable to apply Device Certificate

Hi Everyone, I am following the instructions to apply the device certificate, but I am blocked by the following error:“Unable to execute OTP install operations command to some firewalls. Please identify the firewalls that failed the process from Panorama and retry OTP.” I followed the instructions provided in this link:https://live.paloaltonetwo...

user-id - Firewall is not learning upn name format

Hi All, I hope you are doing well. I am testing a scenario in my lab. I have AD configured with user-id agent installed on that AD server. I am login into machine with upn name ([email protected]) but in firewall user-id logs I see ankur\ankur. I user-id agent logs, I see below logs:01/30/26 14:09:41:236[Debug 398]: UserIpMap: IP 192.168.220.62 ...

Device Certificate fetch pending

On a Palo Alto Networks PA-3410, I ran the following command: request certificate fetch otp <otp_value> But, the job is created but remains Pending (0%) and never completes, even after multiple retries.Currently, the device certificate status is still none. with the job status as follows: 2026/02/09 21:20:59 21:20:59 33870 Device-cert...

F.Harits by L0 Member
  • 418 Views
  • 1 replies
  • 0 Likes

block yahoo mail

Hello Everyone, Does anyone have a way to block Yahoo web-based email without enabling decryption? 1. I have read through the forums, and tried blocking with a URL Profile with the following url configs. *.mail.yahoo.com *.mail.yahoo.com/ mail.yahoo.com mail.yahoo.com/ *.mail.yahoo.com/* mail.yahoo.com/* 2. I have also tried just blocking ...

AZURE Entra MFA for admin access via CLI

We are easily able to setup MFA for the Web UI for the management port vial SAML and Entra SAML auth. We have run into some challenges I was surprised exist. First here are the requirements and goals PA VM series firewalls in AZURE. No On prem AD, ISE or Kerberos dependencies. Our goal it to be 10)% clouds based. MFA to manage the PA for both ...

Carleton by L3 Networker
  • 1825 Views
  • 3 replies
  • 0 Likes

Migration problem from PA220 to PA540 - Virtual Router

I want to migrate from a PA220 with PAN OS 10.2.17 to a PA540 with PAN OS 12.1.3. I've exported the configuration from the old PAN, and imported in the new PAN. Everthing looks fine clicking through the various configuration settings. However on commit there is a problem: deviceconfig -> setting constraints failed : Disabling advanced rout...

daubsi by L1 Bithead
  • 1584 Views
  • 2 replies
  • 0 Likes
  • 1599 Posts
  • 61 Subscriptions
Top Solution Authors
Top Liked Authors