GlobalProtect client doesn't inform the user that the portal/gateway connection is timing out

In my testing of the GlobalProtect client (I'm using the latest stable, 1.2.1), I noticed that if for any reason the connection to the GP portal or gateway times out (e.g. the user's laptop isn't connected to the Internet, doesn't have the correct IP

SSL based custom application also seen as SSL

Hi,

I set up an SSL based custom application for a specific web application in the company.

I followed this document :

But when I look at the traffic logs, for every connection to this application I have :

- 1 log that shows traffic as "ssl" application

PA-2050 - what are the aho_sw_fpga_unavailable and dfa_sw_fpga_not_loaded counters all about?

Hello

I'm trying to find out what the following two counters are all about and if our rate/count for these counters are anything to worry about regarding Data plane performance issues with our PA2050 Active-Active platform. 

Maximum latency between HA peers?

Whats the maximum latency allowed for HA peering links (e.g HA1 control and HA2 keep-alive) between devices setup in active/passive HA pair?

i.e based on the latency can determine the approximate distance that HA pairs can be physically separated.. 1K

Site-to-Site vpn and NAT

Hello,

I have one vpn configuration question, I hope somebody can help...

I am configuring vpn site-to-site in my site PaloAlto, other site is not important in this case.

I am making source and destination NAT for the traffic that is used for vpn. The p

Panorama: migrating between a failed and replacement device

Hi all,

I am running Panorama with two PA-5020s which belong to one device group. The policy for this group applies to both or either firewalls, depending on zones (basically, this is a non-HA pair on two Internet links). One of the 5020s has gone int

How Long to Update Firewall from Panorama

I changed a zone in a policy from Panorama but the change doesn't show when  in the context for the particular device.  Did I miss something? How long for that change to show up?

partial commits causing allowed RTP flows to change to discarding?

We are seeing a strange issue with our 4020s (running 4.1.8h2 right now) where, as far as we can tell, partial commits are at times causing some kind of HA event that, at times, causes some already-established RTP streams that are allowed by the poli

How to skip CaptivePortal for one device?

Hello

As you can see on this forum I have some configurations problems with CP.

In the zone where I have CP enabled I have Minolta BizHub c220 device (with static IP 192.168.3.251). This device has scan to email features. After I enabled CP for this zo

Script for user agent xml api

Is there a script out there yet that someone has written to send user info to the user-agent api?