Gp Configuration

Hello Friends,

We want to  configure our Remote VPN (Global Protect ) on two ISP and  we should be able to  manually switch the gateway at client end and no Lic is required for that?. Please suggest.

Regards

Satish

HTTP Header - Logging NTLM Username

My PA firewall inspects traffic between my users and proxy server. The proxy server provides NTLM authentication. Is there a way of logging the NTLM authenticated username within the http headers?

Replace a device (s/n) in Panorama Policy with an RMA s/n

Hello -

Wondering if anyone has come across this issue.  We recently had to RMA one of our firewalls and we have a fairly extensive / complicated policy set in Panorama which consists of the following:

Shared Pre Rules targeted to specific firewalls

Palo sending email issue

Is anyone else having the "failed to forward log to mail server: aspmx.l.google.com" causing a "mailclient: error reply: 421 4.7.0 Email Senders Guidelines. l.12 - gsmtp"  for google's mail?

Possibly started with 6.14 and maybe 6.13. I had my email se

Why did global protect disconnect? SSL_read() failed: 1 -1 socket error 0

I have a user that is reporting that when they use Skype video conf while connected via Global Protect the VPN connection is being dropped. Looking through the GP logs it seems to indicate there was a connection problem, but the client initiates the

Wildfire Email Link Test url

Hey All,

Does there exist a way to test the Email Link feature of Wildfire with some sort of test url that always gets sent to Widfire and is always Malware?

Like the http://wildfire.paloaltonetworks.com/publicapi/test/pe link to download a Wildfire te

Changing the default management ports on panorama

Hi all,

Is it possible to change the default ports for the management interface?

for example i want to enable connection to panorama management on HTTP with TCP 1234 and not TCP 80.

Getting traffic from tunnel interfaces in MRTG

- I can plot data from physical interfaces (from the PA) in MRTG, such as for  instance
data from Eth1/1 and Eth1/2.  But MRTG's cfgmaker doesn't get any info about tunnel
interfaces. Could this be made possible, for instance by adapting some changes

Multiple rules editing at the same time

How I can edit multiple rules at the same time using CLI?

Anyone else getting a lot of hits for "ASP Webshell Access" 37482

Anyone else getting a lot of hits for "ASP Webshell Access" 37482?

or is it just me?

THREAT ALERT : high : X.X.X.X -> X.X.X.X ASP Webshell Access(37482) drop-all-packets

Highlight unused rules after device restart

Hello,

Is there any way to know unused rules after device restart? Can the PA dig into available logs and recount?