GP VPN client vs native OS VPN client

I am trying to decide whether to put global protect clients on all the users or just use the native VPN client included in the OS. Is there an advantage to using the GP client over a native client

Web Page Elements are not displayed correctly

Hello Everyone,

I have a weird behavior on our multi-vsys firewall.

Some web pages (I will attach a screenshot) are not displayed correctly/completely. We have our pair of A/P 5050 configured with 3 vsys.

1st - is internet facing and I have SSL VPN conf

Is there a way to create a vulnerability exception for an IP address for ALL threats?

We have a server that runs vulnerability scans that I would like to white-list against ALL threats... Is there an easy way to do this?

Thanks

PA-2000/4000 trade-in

Did anyone do a trade-in for their PA-2000/4000 series device (under the so called Customer Care Upgrade Program) ?

What about current subscriptions ? Is the remaining value completely reimbursed ?

As in 1 year of the 3 year contract to go, so 1/3rd of

7.0 deployed on two fw's so far and all is well

In the event anyone is curious- I've upgraded two PA-200's from 6.0.3 up to 7.0 (in a remote site and my science project at home). I am leaving the larger production FW's out of the mix for now until a couple of minor updates come along just to make

Youtube filtering problem App vs Web

Is it possible or a way to filter YouTube on a mobile device using the app vs the web

MS Azure mass changes

Every week we get a huge list of new IP addresses and subnets for the MS Azure product to be allowed through our firewalls. The file that contains the new updates is an XML file. I have a couple questions that I hope to get help with.

1. Surely we ca

Global Protect pre-logon and SSO

Help me understand this better, on the global protect portal for the server cert i need a public cert from a place like godaddy?  For the client cert I can use a cert that issued from our internal cert authority which has a cert on all the domain wor

Agentless UserID in a MultiDomain Environment

My first question would be is it possible to configure a firewall with no vsys license to query more than one domain without deploying the UserID windows agent?

My second question would be if yes then how given that there is only 1 WMI authentication

Thoughts on a set of application rules?

I was messing around in the interface today and had a thought as for rules and am curious what other might think.

I created a group of rules for a particular zone/AD User group.  Something like this

Allow but do not log (DNS for example)

Allow these app

PA-VM on ESXi - L2 Topology Design Questions

I'm looking to deploy a pair of PA-VM 200s running 7.x on a vSphere 5.5 cluster and would like a sanity check on the design.

My client's network currently has one large VLAN that houses most of their servers.  For the sake of this example, we'll say i

VPN s2s PA and Mikrotik

Hello

I have new tas - make VPN s2s between PA200 and Mikrotik router.

PA  (PA 200 on 6.1.4) has Advanced phase mode 1 optios set to AUTO and "anable passive mode" not checked

Mikrotik (751U-2HnD with latest 6.30 router OS) is in aggressive mode.

It's qu

Can User-ID agent 7.0 be used with PAN OS version 6.x?

I can't see anything in the documentation that mentions the requirements.

Can I update our existing User-ID agents to version 7.0 and have them still work without updating our firewall code (6.1.3 / 6.1.4) at the same time?