Related with QoS...

Hi,

I'm trying to understand a QoS functionality, let's see if anyone can help on this case.

I have a webserver on a DMZ and want to asure 15Mb from inside to outside, that is, in case of congestion in DMZ, priorize the Http traffic (respond http reque...

FTP connections jumping rule

Hi,

we have 2 rules. the first one filtering by application FTP 

and the second one with the same source/destination like the rule above and using any/any permit.

We run ftp connections. all these FTP connections should match in the first rule fi

Policy for AD authentication across zones

Trying to narrow it down and determine the minimum set of applications/services that need to be allowed for a user to login into a Windows 7 client in one zone and authenticate against a Server 2008R2 AD Domain Controller in a different zone? The Win

MDM GP-100-MDM(vsys1): details: certificate chain has expired

We are receving this alert for the certificate expiration

we have configured MDM with one of trusted root certificate (this got expired and we renewed that recently)

MDM---->created with root-CA certificate

certificate:

--root-CA (this was expire

Port 4443

It has been noted that our global protect portal is reachable from the internet using port 4443 and is presenting a self signed cert which is seen as a security vulnerability. Can you let me know if port 4443 is necessary in terms of GlobalProtect co

What file type in the file blocking profile can be uploaded to wildfire?

Hi,

I would like to don't upload email-link to wildfire cloud.

Usually I choosed "any" for file types in file blocking profile.

But I have to check each file types for except "email-link".

What file type I should choose?

Currentlly, there are 81

Palo Alto Training Partner

Hello Community,

We're thinking of becoming a Palo Alto Training Partner. Can someone please let know the process in becoming a training and partner and any links.

Regards

Manage users connected to wire from layer 3

Hello i need for you help.

The client has device connected in virtual wire mode and wants to configure another interface on the device that will connect to your LAN where their servers are and can see users who connect to the virtual wire mode.

T

Why is there not an option to disable route summarization of 3rd Party GlobalProtect IPsec Clients?

What is the point of not allowing us to configure if we want to summarize our IPsec routes for 3rd party clients on GlobalProtect?

I don't get why this is forced on us and only browsable through the cli... not very nice.

PA-200 Not Showing "Source User" in Monitor logs. Any Ideas?

Software Version:  7.1.2

User ID Agent:  7.0.4-5

After upgrading the PA and the UIA, the monitor logs are not showing "Source Users".  I've also looked in the  Reports section and it's not showing up there either.

I've also tried to re-configure