Normally, you would use updates.paloaltonetworks.com and wildfire.paloaltonetworks.com or eu.wildfire.paloaltonetworks.com to get dynamic udpates for Palo Alto Networks appliances.

However, if you want to use static IPs, use the following

• staticupdates.paloaltonetworks.com - 199.167.52.15

This will be used for:

• Applications
• Anti-Spyware
• Antivirus
• Vulnerability

WildFire is eu-s1.wildfire.paloaltonetworks.com - 54.251.33.241.

Applications and Threat updates from Palo Alto Networks are made availble every week. The schedule isn't fixed and sometime several updates are released each week.

You can set a different installation value for App-ID updates. However, this will affect all updated in that content update (e.g. modified applications and modified decoders).

Remember, Palo Alto Networks tend to release a “Threat Only” update 12 hours or so before releaseing a new App-ID update so that the Threats can be installed more quickly should you deliberaly delay App-ID updates.

Starting in March 2018, Palo Alto Networks stopped releasing new App-ID definitions as frequently as they had. They now introduce new App-ID definitions on the third Tuesday of each month (Microsoft traditionly used the second Tuesday of each month for releases).

You can tick the “Disable new apps in content update” on the dynamic update schedule. However, this just disables the new App-ID definition. It doesn't stop modification of existing App-ID.

Here is a list of changes that the Application and Threat updates can introduce (obivously, the Threat updates require the Threat Prevention licence. If you don't have this, you will only get Application updates).

• New Applications (This is the only category that is effected by “Disable new apps in content update”. However, if you set the “New App-ID Threashold” value, you will affect the application of all updates in that content updated (including modified applications).
• Modified Applications
• Obsoleted Applications

• New Decoder (I've not see this but I'm guessing it is possible)
• Modified Decoders
• Obsoleted Decoder (I've not see this but I'm guessing it is possible)

• New File Type
• Modified File Type
• Obsoleted File Type (I've not see this but I'm guessing it is possible)

• New Anti-Spyware Signatures
• Modified Anti-Spyware Signatures
• Disabled Anti-Spyware Signatures

• New Vulnerability Signatures
• Modified Vulnerability Signatures
• Disabled Vulnerability Signatures

Here is an example of updates

2019-10-23 - 8202 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.
*2019-10-16 - 8201 - Released New Applications, Modified Applications, Obsoleted Applications, Modified Decoders and New File Types.
2019-10-15 - 8200 - Released New Threat Prevention Stuff. Announces new App-IDs will be released on 15th October.
2019-10-11 - 8199 - Released New Threat Prevention Stuff. Announces new App-IDs will be released on 15th October.
2019-10-08 - 8198 - Released New Threat Prevention Stuff. Announces new App-IDs will be released on 15th October.
2019-10-04 - 8197 - Released New Threat Prevention Stuff.
2019-10-01 - 8196 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-09-27 - 8195 - Released Obsoleted Applications. Released New Threat Prevention Stuff.
2019-09-24 - 8194 - Released Modified Applications, Modified Decoders, New File Types, Modified File Types. Released New Threat Prevention Stuff.
*2019-09-18 - 8193 - Released New Applications, Modified Applications, Obsoleted Applications. Released New Threat Prevention Stuff.
2019-09-17 - 8192 - Released Modified Decoders. Announces that new App-IDs will be released on 17th September.
2019-09-12 - 8191 - Released Modified Decoders. Announces that new App-IDs will be released on 17th September.
2019-09-11 - 8190 - Released Modified Decoders. Announces that new App-IDs will be released on 17th September.
2019-09-07 - 8189 - Released New Threat Prevention Stuff.
2019-09-05 - 8188 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-08-30 - 8187 - Released New Threat Prevention Stuff.
2019-08-28 - 8186 - Released Modified Applications, Obsoleted Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-08-22 - 8185 - Released Modified Decoders. Released New Threat Prevention Stuff. (Emergency)
*2019-08-21 - 8184 - Released New Applications, Modified Applications, Obsoleted Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-08-17 - 8183 - Released New Threat Prevention Stuff. Announces new App-IDs will be released on 20th August.
2019-08-16 - 8182 - Released New Threat Prevention Stuff. Announces new App-IDs will be released on 20th August.
2019-08-13 - 8181 - Released New Threat Prevention Stuff.
2019-08-09 - 8180 - Released New Threat Prevention Stuff.
2019-08-07 - 8179 - Modified Applications, Obsoleted Applications, Modified Decoders Released New Threat Prevention Stuff.
2019-08-03 - 8178 - Released New Threat Prevention Stuff. (Emergency)
2019-08-02 - 8177 - Released New Threat Prevention Stuff.
2019-07-31 - 8176 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-07-26 - 8175 - Released Modified Decoders. Released New Threat Prevention Stuff.
2019-07-24 - 8174 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.
2019-07-18 - 8173 - Released Modified Decoders. Released New Threat Prevention Stuff.
*2019-07-17 - 8172 - Released New Applications, Modified Applications, Modified Decoders
2019-07-16 - 8171 - Released New Threat Prevention Stuff. Announces new App-IDs will be released in a second content update later today. 
2019-07-12 - 8170 - Released Modified Applications, Modified Decoders. Released New Threat Prevention Stuff.