Problems with ms lync / url filtering

Hi all,

I am trying to get lync2013 working, and more specifically Skype for Business, successor of Lync. I have Lync 2013 completely working, but I would like to permit all the wildcards permitted through url filtering, linked to a number of applicat

Time stamp of traffic/threat/url logs are 3 minutes into the future?

Threat logs, traffic logs, url filtering logs are all in the future by 3-4 minutes where everything else has the correct time from the ntp server. The dashboard shows the correct time and what's interesting is that the Configuration and System logs s

Unknown URL Category

How many of you have this category being blocked?  Any issues with web surfing?

Logging in to Palo is different if I fully qualify my login username or not

I stumbled on a difference if I log in to my admin account whether I fully qualify my domain or not.

Authentication is coming from an Authentication Profile that points to AD, uses LDAP and has the Login Attribute of the sAMAccountName.

In administrato

User Name Wildcards

I know this has been asked before, but not for a few years.  My usernames can take several different forms:

bob123

domain\bob123

bob123@domain

So how can I ask for a user activity report or other report saying user.src contains "bob123"?  Can I use a reg

What does it mean message which is "Packets dropped: invalid packet header content"?

Hello,

We are doing take-over test on A-A.

We are seeing packet-loss with the following global counter on Active-Secondary after take-over.

flow_fpga_rcv_tag_err                  32406      350 drop      flow      offload   Packets dropped: invalid pack

VPN Tunnel between static Palo Alto and dynamic Fortigate

What is the exact settings in order to establish a VPN tunnel between a Palo Alto firewall that has static WAN IP address and a Fortigate that has Dynamic WAN IP address?

If both has static IP address, the tunnel works.

If Fortigate has dynamic WAN add

Globalprotect with 2 factor auth, client certificate problem (SSL handshake)

Hello,

having problems with GP client certificate authenticating on Android and iOS (Windows is working OK). We are using company PKI certificates, Root and Issuing CA certs have been imported to Android/iOS, as well as a device-specific client certif

Not understanding "WildFire: Automatically Detect and Prevent Unknown Threats"

First of all I'm very impressed with Palo Alto's firewall, I'm definitely a "fan", however we purchased a wildfire subscription under this premise:

WildFire^TM simplifies an organization’s response to the most dangerous threats, automatically detecting

GP Gateway login page

Is it possible to disable this login page to download the pan gp client?

HIPmatch IP?

Palo currently emails me the hipmatch alert and includes the internal IP that globalprotect assigned it. How do I get the public IP that the user came from in the hipmatch alert email?

I know I can manually find it via the interface (which shows both

Compatibility GPClient-PA firmware

Hi,

We have PA-2020 with PanOS 5.0.11, and GlobalProtect Client 1.2.9.

which the newest GPclient version that i could have with PanOS 5.0.11??? Its worth it to update the GPClient to any newest version????

regards..