Download executable GP from mobile phones

Hi,

I wanted to know if it's possible in Palo Alto, when you connect to the portal via https://vpn.xxx.com and authenticate from mobile phone, that instead of displaying the laptop executables, you get a redirect to the app market or the option to do

VPN tunnel monitoring/alerting

When NOT using tunnel monitoring and keying off events ids for "tunnel-status-up/tunnel-status-down",  what is the best logging to alert on for tunnels going up or down?

Is it only alertable/trackable by 
( eventid eq 'ikev2-nego-ike-dpd-dn' )


Or is the

decryption error with Anydesk

Dear Community!

I´m trying to use Anydesk and it only works with decryption policy disabled, somehow the predefined exclusion for Anydesk is not working.

While checking the decryption logs I can see the following error:

"tlsv1 alert insufficient se

translate.googleapis.com is categorized as private IP addresses

Hello, I'm wondering if anyone else has encountered this.
When a user wants to use the translation function in Chrome, it doesn't work. I looked at the logs and saw that the URLs are categorized as private IP addresses, which is blocked for us. The qu

Can ACC data really display data per user group?

Hello!

I´m trying to filter data, in particual user activity, by using filter "user group" however I only have the data filter by user or IP, not using the group.

Do you know if you can actually filter data from any widget of the ACC by using the

Issues GP in Iphones

On iPhone, the  gw for SAML authentication does not open the system browser (Safari). It opens the embedded browser. We configured the "default browser" in APP config like YES. 

In android is working fine but no in iPhones. Why? any incompatibili

versions 10.2, 11.1, 11.2 - which is best?

of the current trains 10.2, 11.1, 11.2, which would be the best in terms of robustness and stability?  I am running PA-440 and PA-3250.  The later trains dont have any features i need over and above what is available in 10.2. 

Unable to HTTPS or SSH into new out of the box PA440

Had a new PA440 delivered to a remote location. I am able to ping the device (192.168.1.1) but am not able to HTTPS or SSH into it. Assuming that my IT person at the remote location has the device plugged into the MGT port and in the switch, which si

Unable to open TAC cases due to mandatory TSF file upload requirement

hi guys, 

I am trying to open a TAC case in PA portal, however it seems there is latest change happen which requires a TSF file upload mandatory.

SInce we are a restricted site, we cannot share or upload anything on the portal. Because of this issue,

Ticket cannot be generated due to TSF file loading failure

We are trying to generate a support ticket, but when loading the files (including the TSF File), the upload stays like this, without allowing the ticket generation.

EDL server certificate authentication failed. A local copy of associated external dynamic list will be used

I'm receiving this error from our firewall every 2 minutes, I can't figure out what the cause is. The reason says "self signed certificate in certificate chain" but I don't know what self signed cert it is talking about. This has been working for yea

VPN Fail Over

Dear Team,

We Have PA Firewall With Single ISP and Peer End Sophos FW With Dual ISP.

Here I need to configure VPN Fail over. What are the step i need done PA side? 

Regards

Karthikeyan 

Failed to extract file panup-all-antivirus-5240-5760.tgz with sha256

Hi All,

I have HA firewall PA1 and P2. PA1 is fine but on PA2 having this issue with failed installation antivirus.

although it failed for the 1st minutes and PA2 success on 2nd minutes

i need to know or some explanation why its failed on the f