Hi all, I have two external gateways on the same firewall, and I’m wondering whether I can reuse the same Client IP Pool for two different tunnel interfaces (on two different external gateways) on the same firewall. I have already done that via SCM and committed the changes, but I'm not sure whether it'll work or not.
Where do I go to download the community edition of XSOAR?
Dear All, I have added the self signed certificate (certificate generated in linux and verified by AD) in broker VM, I did not receive any error, but need to verify if the content cashing is working properly? How can I verify if the content cashing is working or not?
Hi, I was wondering if anyone can shed some light on the issue I am having with GP. This is happening to all users but I haven't been able to find out yet WHEN does it start (but it's weeks/months after the temp fix). When it starts, GP starts rapidly connecting and disconnecting every 1-2 seconds (the connection is established but straight ahea...
Hi Team, Is it possible to calculate Parsing Success Rate Metrics in XSIAM i.e., % of events successfully parsed into SIEM schema. Regards, Wincy
We are planning to integrate CIE with Entra ID to map and authenticate GlobalProtect users. However, after completing the configuration, we observed that all users from Entra ID were synced to the CIE side, even though a filter was configured to include only users from a specific group. Could someone please assist us in understanding why this is...
Hello everyone, I’m looking for an XQL query that shows CPU and memory usage.For example, I want to visualize something like: the XDR service consumes an average of X% memory and Y% CPU per hour, preferably as a graph. Could you please help with this?
Hie, Situation - Wanted to kaminsky the DNS Responses for my client from the FWComplication - None of the dig are responded Need your help on this? Client Requests for Promise/Spoofed IP keviv@keviv-VMware-Virtual-Platform:~$ ifconfig ens37ens37: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500inet 192.168.21.21 netmask 255.255.255.0 ...
Hi Team, I’m looking to confirm the maximum number of units (aeX.Y subinterfaces) that can be configured under a single Aggregate Ethernet (AE) interface on Palo Alto firewalls. Specifically for models like PA-440,PA-450, PA-820, and PA-850, and across recent PAN-OS versions: • What is the hard platform limit for aeX.Y units per AE?• Are there a...
I need your help with understanding this. We've got a rule that was intermittently working. We built a rule around the use of "windows-remote-management" which is using the standard port of 5985/tcp. The rule is a service "application-default" rule. When we look through the logs we see that some of the traffic that should be matching this...
Hello, In October, our XDR manager console displayed a pop-up window regarding "Cortex XDR 4.X is now available" with the possibility to upgrade before end of February 2026. We did not choose to upgrade at that time. How can we upgrade now ? Can we do it alone or it require a support case ? Thank you for your help. Thomas
PA440でのIPv6環境でのシステム構築を実施予定です。 構成としてはWAN(2本) --- PA(HA) --- L3SW(stack) --- L2SW --- デバイスとなり、全て動的なIPv6での環境となります。 回線はフレッツ光クロスとStarlinkになり、各ISPからIPoE回線でのDHCPv6-PDでのIP配布となります。 上記の構成はPA440で実現可能でしょうか。 配下の機器にはPDでの委任もしくはRAでの配布を想定しております。
Hello, I wouldlike to enable ECMP on one HA pair. I read that the process will restart and can lead to trafic disuptions. I was wondering if i could do the following in order to avoid disruptions : Disable config sync. Doing the modification on my passive firewall. Wait that the process restart etc. Force HA failover on the standby member with...
I am working on a Cortex XDR Device Control configuration and I need to allow a specific mobile device only for file transfer from the endpoint to the device, but I do not want to allow any data transfer from the mobile device back to the endpoint. However, I noticed that the device is detected as a CD-ROM device type in Cortex XDR (1.ss). When ...
Hi.My license expires today.I got a new one, but it's for one month, not a year. Why wasn't my license renewed for a year?
