SSL VPN client is sending the PA traffic with other local interface IP

I realised that some traffic from several remote clients is going through the firewall with another remote-local IP address, different from my remote assigned-pool. Obviously, this traffic is beeing dropped. It happens with users accessing correctly

Intermittent Group Membership problem

We are currently having a problem with a new domain where the group membership intermittently disappears.

If you run the command "show user user-IDs match-user domain\" (4.1.x) or "show user pan-agent user-IDs match-user domain\" (4.0.x) it shows use

BGP Route Table

So in discussions with a few customers the BGP functionality has come up when peering with ISPs and replacing dedicated BGP equipment.  The route table size on the PAN5060 is roughly 64000 routes.  Most Universities have tables upwards of a 1/2 Milli

two factor authenticaton tokens with PAN firewalls...

I am looking for a two factor authentiction solution for PAN firewalls (Global Protect).  particularly interested in a Mobile phone base app to provide security token or OTP to authenticate users via Global Protect.  Anybody have any good or bad expe

Global Protect Client

Hi

I'm using radius (rsa) to authenticate GP users and can't get me head around the GP client configuration - specifically the section where you need to put a username and password. How can this be possible when the RSA token changes every minute?

Can

Policy Based Forwarding (PBF) problem

I’ve got problem with policy based forwarding. I have 2 ISP - traffic to the 1st ISP is forwarded by pbf, to the 2nd – via default route. PBF rule monitors the remote target’s IP and availability of nexthop address. My question is: how the pbf is che

How to Lock down Search Engines to Safe Searches

Here are some custom vulnerabilities and one custom application I wrote to block unfiltered (Bad) searches on the big search engine sites.

These were written in 3.1.0 software.

UPDATE: See attached for 4.0 version of these vulnerabilities and custom ap

Help on Global Protect using LDAP Authentication..

Hi,

I been having trouble with GP authentication using LDAP server..

It seems like if i didnt set the SSL on the LDAP configuration, the AD is not able to communicate with the PAN..

Even if i did set both of non SSL or SSL, it still didnt show any users

How does DHCP Server "Ping IP when allocating new IP" work?

What's the destination MAC address when this ping is sent?

When is this ping sent?  After/Before DHCP requests?

Thanks.

Issue with Global Protect and HP 6510b laptop

the GP client software will install (v1.1.6) however, keeps connecting and then disconnecting.. seems to only be happening with our HP 6510b 32bit laptops.  Any other people experiencing this?