How to check GlobalProtect IP Pool

While troubleshooting a user's inability to connect to GlobalProtect, I wanted to verify there were IPs available.  However, the IP pool did not appear under the DHCP servers.  How can I check to make sure there are IPs available within the IP pool t

PA syslogs and change logs

Is it possible to send the syslogs for only the system changes from the pa to solarwinds?  How to you configure the PA to send the change logs to solarwinds?

Decryption issues with certificate.

This is a new deployment and testing decryption. I have generated a self signed cert from the firewall and imported it into the local trusted root authority store on my computer.

If I try to go to a site that is encrypted (eg https://www.google.ca

Captive Portal Customization and Device Detection

I have been tasked with modifying our Captive Portal, from Palo Alto, that current users see when they connect to our guest Wi-Fi here at the Upper Canada District School Board. I have read most of the documentation related to the captive portal and

SSL / Outlook Web Access not identified by App-ID

I have a customer that is using a PA-5020, and when users try to go to certain Outlook Web Access sites, it won't work for them.  Checking the logs, I can see where the user initiates a connection over port 443 to the destination OWA server, but App-

Where Re-transmission packet process? Slow path or Fast Path File in blocking mode

Hello,

I tested that I copied a file from server to my host while the file server was connecting that is SMB..

 I did packet capture through wireshark.

I saw re-transmission when drag and drop file from File Server as the same time,

I think the r

OSPF through Vwire

I attempted to install a PA5060 between a Cisco ASA and Cisco Nexus switch in vwire mode. the ASA has an OSPF neighbor with the nexus 7k to distribute the defualt route learned via BGP from the ISP.

Once the 5060 was installed, the OSPF neigbor cam

Global Protect Speeds?

Hi, realtively new to PAN, and have some questions related to Global Protect speeds.

I have a win 7 x64 client connected to a gateway on my 3020. 

From the client to the internet over 30mbs of bw

From the PA3020 VPN interface to the itnernet 20mbs of

Panorama Access Domain Admins - Not functioning 7.0.3

Currently we have been working with setting up Access Domain accounts for our server admins to have restricted RO access to traffic logs and policy rules. The configuration appears sound but all testing using either local or radius/ldap auth accounts

Can you Proxy NTP and Syslog services

Ideally, I would like to say on all my systems on all my networks to get NTP and SYSLOG from the fireall on address x.x.x.x

Dana

Threat Detail report: Full url after virus detected?

Is there a way to see the full URL of the file in the custom “Threat Detail” report, which was blocked by firewall as a threat?

We were able to retrieve the file name using this report but for our application, we need the full URL as well.

Does Palo Alto support Reverse Route injection?

As title, does Palo Alto support something like CISCO "Reverse Route injection" which can inject a /32 route to the campus network for a dial-in user? Or can I create a /24 loopback interface for VPN users and redistribute the /24 to campus network?