postfix server nat rule on panos -9.-0.4

Hello ,

I cant update panos ,

i want simple bi-direction nat configuration

i have rocky9 as a web,mail,dns server on kvm

what is best nat rule sequence to work mail server correctly

(after change nat rule sequence i am getting varity of erros  )

i a

pan-pa-80

I would like to know if we buy pan-pa-80 firewall, what license are need to be purchased in order to have a web filtering, malware attack, 

And what is the purpose of GlobalProtect subscription year support. What support services it carries 

User-ID validation after upgrade

Hi All, 

Commit error<mlav-engine-urlbased-enabled unexpected here> after upgrade version to 10.2.10

we upgrade pa-5220 version to 10.2.10 ，and then meet a commit failed as below，anybody have same question and anybody could give me some suggestion？

Validation Error:

profiles -> url-filtering -> STD_UF -> mlav-engine-urlbased-enabled unexpected here

What is the RAM for PA1420, PA3430? Do they have at least 128 GB Memory ?

Hi,

Kindly i would like to ask, What is the RAM for PA1420, PA3430? Do they have at least 128 GB Memory?

I can't find this is in datasheet or hardware architecture.

Thank you.

Unable to Apply Group based Security Policy

Hello Team,

We have successfully integrated LDAP with the Palo Alto firewall, and user-ID mapping via the user-ID agent is functioning as expected. We are able to use LDAP users in the security policy without any issues. However, when attempting to

Wrong categorization of traffic to icmp,tracert and communication break for web traffic

Hi team,

We facing issue with PA firewall that, traffic from browser or application categorized to ICMP related and match to ping enabled rule in mass.
Due to this, return traffic of the TCP session drops and application communication interrupts int

migrating from 5220 to 3440 - 40 G interface question

Ports 21 and 22 on the 5520 device, which are 40G interfaces, are currently in use. We need to migrate this device to the 3440 model. However, on the 3440, I don't see a specific 40G interface listed. Instead, the documentation suggests using ports 3

Using 2 Primary Palo410's and 1 Backup 410

 Morning All,

I have a total of 3 PA410's (each with their own license) that I am using remotely to build a VPN tunnel back to our PA3260 located on our campus. 2 of the 410's are being used in a primary role, each with configs that vary a bit. I'd

Logs size

Hi

We have recently moved fro, PA850 to PA1410.

In the 850, we had approx 0 days of traffic retention. For some reason, in the 1410 (and also in 450), i have only 3 days of retention.

It seems like they reduce the partition of logs.

Does anyone know

CVE-2023-48795 isn't fixed in the 11.1.3-h2 as is claimed in the advisory

CVE-2023-48795 isn't fixed in the 11.1.3 as is claimed in the advisory:

https://security.paloaltonetworks.com/CVE-2023-48795

our Cyber Team ran a scan and still our firewalls are showing the weak cypher , even if this is disable in the configurations