Public IPs in global protect traffic logs

In firewall we have sepearte zones for global protect and Untrust(internet ) zones.However in traffic logs, I can see public IPs in traffic logs with global protect a source zone.Is there any explanation for this.I believe the private IP address range we have assigned should only aprear for global protect zone. is it normal to see public ip rang...

How to configure VPN login via unique certificate and LDAPauthentication with enterprise CA server

Hello, currently our network team is setting up Palo Alto FW and VPN for users, VPN users will use GlobaProtect client to connect to intranet. The environment as below:Certificates required be managed by enterprise CA server (domain)based on unique user nameAll the users are using non domain machines but have domain user account for access intra...

Viwire Mode can be configured mixed type?

Hello everyone. I am considering of configuring Vwire mode pair (copper and fiber ports)They can combine together even though different type I don't know well, Does system operate about packet forwarding each port properly?I cannot find similar to that case my neighborHave you guys ever experienced about that case? Tha...

I can't PAN-OS uprgade

WildFire Email Alerts for the email Sender!

The User which send a mail from extern to intern through the Palo Alto Wildfire, and the Palo Alto block the mail, do the user from extern or intern get a Info that his mail would blocked from wildfire?or is this not possible?Only the Administrator get infos?!

"Appweb" failures and the firewall management interface not working.

Over the past two days we have been having trouble with the web interface on a 3020. It is really slow, and no logs or anything show up (logs still go to Panorama.) After a few minutes the webpage will start throwing errors like "unable to connect". Then we get these system alerts:appweb: exiting because service missed too many heartbeats Also o...

How to do communication between virtual routers?

Hello Experts I have two virtual routers configured on firewall. I would like to do exchange routes between virtual routers. How many ways I have - to do that other than just using static routes?

what is destination user field in traffic and threat logs

I can see destination user field in traffic and threat logs getting poulated.How this data is collected.

7050's filtering/searching logs much slower than other models, is this normal?

I have worked on all Palo Alto models and it seems to me the log search takes much more time on 7050's than on other models. Currently we do not expiration timeframes set for logging, only for the extpcaps file. Sometimes the log screen will refresh multiple times when using filters in my log search.

Custom Report - Maximum Limits

I'm currently trying to produce a custom report and i'm hitting a few walls trying to generate useful data - I'm hoping someone here might have some creative ideas, or even point out the obvious ones I may have missed. We currently have a blacklist of source IP's which relate to brute force threats which we use in a threat rule, as we see new 'a...

virtual routers

How can you tell if a virtual router is passing traffic? Is there a check or test you can run?