Resolved! Disabling Direct Access To Local Networks - GP VPN

Hi,

I was wondering whether someone can provide me clarification on this feature.

Palo states 

"You can now disable direct access to local networks so that users cannot send traffic to proxies or local resources while connected to a GlobalProtect

Resolved! Authentication user (UserID agent) problems

Hi, user registered sometime in UserID-Agent and sometime they dont, randomly...We have installe another UserID agent but the result its the same.

we run show user ip-user-mapping all and we dont see any user, but if we run show user ip-user-mappin

Resolved! Have you guys ever set RAID Auto Setup (Ignore Non-Matching Models)?

Hello~

The PA-5020 are using one disk. [size 120GB]

My customer want to add one disk and RAID configuration and has another SSD [size 240GB] also model is different.

I guess that PA-5000 Series support Raid as different model including

I have nev

Resolved! Egress/Ingress difference for QoS

Hi Everyone,

My internal network (trust zone) operates at 1Gb speeds and the connectivity with ISP (untrust) is at 100Mb. I am in the process of setting up SIP QoS but am a little confused as to how I should manage the inconsistences between the IS

Resolved! Are there any applications that web-browsing, ping are not offload?

Hello

I am considering of turning off offload at PA due to packet capture.

I read one of documents about session in comunnity site.

web-browsing, ping are not offload.. so I don't need to do command line [offload no] If I want to do pcap to inspect

Resolved! PBR/NAT mechanics

Good morning everyone,

I have a weird issue that I think is related to how PBR or NAT works and/or something we need to program differently on our Palo Alto. I’ll try to explain our setup and the issue that occurred.

We have our main circuit that

Resolved! SSL Decryption

With SSL Decryption it is recomended that Financial services & Medical category is not decrypted.

My question is how do you ensure that sites that should not be decrypted are not i.e. JP Morgan is clearly a Financial services and will not get decrypt

Resolved! Block ms-update for GlobalProtect sessions?

Hi all -- 

Lately, with the Win10 release, I'm finding many of my VPN users are downloading gigs of updates over my meager 10mbps company internet cxn.  I'm wondering if there is any way to block specific services/applications (ie.- ms-update) over

Resolved! Pull Info on Specific GlobalProtect User

Is there a way to pull information on a specific user connected on globalprotect throught the CLI?

I know the command:

pulls all the users in... but what about just for a single user?

Thanks.