GlobalProtect Prelogon without initial Internet Connectivity

Hi,

Please can someone explain to me how GlobalProtect Prelogon can possibly work without any valid internet connection.

For example in a hotel or cafe, you have to be logged into your laptop first to connect to the hotel's wifi portal so how doe

How custom forward logs to syslog server

We are sending all logs from Palo to SIEM. How can we eliminate those of low or no value to us (exp. Allow_TCP_End) to be sent to syslog server? The server fills up quickly and there's a large amount of logs that provide no insight during analysis; w

VPNC Ports?

Hi all,

I have enabled VPNC for my Linux users who cannot use GlobalProtect.  Does VPNC use port 443 like globalprotect?  Can't seem to find any information about this on the web.

-Matt

How to restart the OSPF Process

Hi, I'm trying to do some debugging of some OSPF troubles that we are having and I'd like to restart the OSPF process to see the neighbors comes up and the LSA exchange.  How do I do this via CLI?

On a Cisco router it would be "clear ip ospf proces

GlobalProtect Client not Connecting

Hi All,

I'm experiencing a problem with GlobalProtect and I'm hoping I can get some assistance.

I'm able to log on to the GlobalProtect Gateway. I successfully log in and Download the agent. However, when I click 'Connect'. I get an error that says

Unable to remove custom report from Reports.

When I go to Monitor->Report tab . Under Custom Reports I see 3 reports. One of the report test_report shows in there but is not in my Manager Custom Reports.

I tried deleting it using

delete report custom scope 1 report-name test_report file-name *

After Juniper and Fortinet...

What are the chances PA will be next with backdoor revealed? 

Highlight Unused Rules

Hi

We're running 4.0.1 in a test environment. We have a large Checkpoint rulebase that we will export. It ideally needs a rule tidy up to remove unused rules and objects.

Can someone describe how the "Highlight Unused Rules" tick box option on the pol

Netflow data - How often is it exported to a collector and..

Our firewall is setup to export Netflow data to Nagios Network Analyzer.  We need to know:

a)  How often is data exported from the Palo Alto to the NNA collector, and

b)  How large are the packets sent from the Palo to the collector

Any ideas on

How to collect the User-IP Mapping from Cisco ACS

Hi,

We have Cisco ACS which authenticates our wireless users(mobile phones,laptops).How can i configure Palo Alto and Cisco ACS to collect User-IP mapping? PA version 7.0.3 , ACS version 5.7

PAN-OS Bi-Directional NAT and Nintendo Online Gaming

I have a couple of Nintendo consoles on the network which would like to connect for online gaming.

I am on a cable connection so am using Dyndns lookup for my external-IP.

I have the following Bi-Directional NAT policies configured.  

Applicati

Global Protect Routing Table

Currently for Global Protect we route all traffic through the firewall.  Is there a way we can add IP’s to the routing table for GP clients only?  For instance, add GoToMeeting IPs and have all that traffic go out the Internet.  Is this possible?