Bulk submission support using Web GUI? and CLI access to minemeld hosted in Autofocus?

I cannot see a way to do bulk submissions from the Web GUI that I know of so are there plans on having that capability in a future Minemeld release?

how to get CLI access to Minemeld hosted in Autofocus?

Do you need Windows Server 2019 support for User-ID?

If you think you will need Windows Server 2019 support for User-ID, ask your PA rep to vote for feature request ID# 11012!

We just upgraded all of our domain controllers organization-wide to Server 2019 only to find out that User-ID does not work wit

Best Practice: Allowing a known application together with a custom service.

Let's say we have 2 zones seperated by our PA firewall, Zone A and Zone B. Traffic between Zone A and Zone B is only allowed for some applications/services from dedicated devices in Zone A to dedicated devices in Zone B.

We have a custom Service whic

Import LDAP Groups

All,

I am trying to import my LDAP groups, but don't want all of them.  I have too many groups to put them in the Include list.  I also have a large number of local.admin and Folder Access security groups.  SInce I can't filter by OU, how can I filte

Zone protection - Show hops between source & dst.

Hello,

I want to see the hops between the source and destination when I do tracert from my PC to an IP.

The tracert is shown as completed.

I followed the following kb but didn't work: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA

Traffic is not getting Natted DIPP

We have Single Outbound PAT configured for internet traffic for all internal users.

So all users traffic use the same Outbound PAt while going to internet but one traffic is not getting natted with this NAT policy

There is no PBF configured, its simpl

Automatic email alerts: Sinkhole and security policies

Hi Community,

This query is for PAN-OS v8.1.X

I am trying to generate an email alert when the firewall sees an (action eq sinkhole) event or when the security policy created to sinkhole an infected host is used. Email Profile(s) have already configur

BGP Peering Issue

Hi All,

I have an issue with maintening a BGP Establish connection. Essentially the setup is the Palo Alto to two peers to allow for resilience if one BGP peer fails. If one peer is established it stays stable. If I enable the path to the second peer

Custom URL category enforcement in URL column

I'm seeing some different behavior from our firewall on 8.0 code.  I've got a few rules setup wtih both security URL profiles, and the URL category column.  I've got a few custom URL categories made that match certain traffic.  What I'm finding is t

Palo Alto IDS Deployment

Hi!

Has there any specific document for PA IDS Deployment and best practices?

Thanks in Advance..

Bootstrap Component logs for Palo Alto Firewall instances

Hi

I am looking to know the best way to troubleshoot bootstrap process on Palo Alto virtual instances on AWS. We have followed the bootstrap package standards as mentioned in https://docs.paloaltonetworks.com/vm-series/8-0/vm-series-deployment/boots

Is there max concurrent session for GP with one ID?

Hi there,

One of my customer says when he establishes multiple GP tunnel from multiple iPad (iOS 12), when 4th tunnel is established, 1st tunnel will be disconnected.

His topologies are as below:

-PA is VM-300 with PAN-OS 7.1

-iPads run with iOS 12.2

-G

how to route different inside subnet to different outside interfaces?

the customer have added a extra isp router which i need to route a certain subnet through it for internet , the problem the default route 0.0.0.0/0 already route interent through the old outside interface , how do i route the specific inside subnet t