Palo Alto

I'm writing this in February 2025, and as far as I know, Palo Alto firewalls (not Panorama) don’

As the title suggests, Palo Alto's clientless VPN allows users to access internal resources (HTTPS-based) without installing the

We know that in Palo Alto, or in any NGFW, we can allow or block various URL categories. Speaking specifically

If you work with Palo Alto firewalls, you might have heard of App-ID. They work well and let us create

Most websites we access today use HTTPS, and to fully leverage a Next-Generation Firewall (NGFW) like Palo Alto, inspecting encrypted

If you’ve worked with Palo Alto firewalls, you might have noticed they don’t make it easy to get

In my previous blog posts (linked below), we looked at how to allow or block specific websites using URL filtering.

When working with Next-Generation Firewalls (NGFWs), you may come across situations where you need to block specific websites. In this

If you use URL filtering on your Palo Alto firewalls, you may come across situations where a specific URL category

Palo Alto firewalls come with a default master key used to encrypt passwords, secrets, and certificates. If your firewall is

Auto-tagging allows the firewall to tag a policy object when it receives a log that matches specific criteria, creating an

What if I tell you that configuring site-to-site VPN on Palo Alto firewalls is easier than you may think? Just

We all know that firewalls are limited by hardware resources. Larger devices support higher throughput, while smaller ones may not

In this blog post, we will look at how to use Entra-ID SAML SSO with GlobalProtect VPN. This guide assumes

I already had Palo Alto GlobalProtect VPN configured with an external gateway and portal, allowing me to connect back to

As soon as you configure GlobalProtect and go to the monitor tab, you will see hundreds or even thousands of

In this blog post, we're going to explore how to Auto-Scale Palo Alto VM-Series Firewalls in AWS. It&