Assigning VPN User a Static IP

We have a customer who is running a specific thick application that requires the user to have the same IP address every time they attempt to authenticate to their servers. In the office this is not an issue since we can assign them a static IP and th

How to block upload dropbox with upstream proxy

Hi to all,

I have to implement a block dropbox upload.

The architecture that I have to provide the user network, the internal firewall Palo Alto, an external proxy, an external firewall, Internet.

I configured the various points to implement the block a

PanOS 4.1 - GlobalProtect portal client configuration failed

I am having a problem with my GlobalConnect configuration.  Everything works fine when I have it set to On Demand.  However, I have a set of users I want to effectively have the VPN always on, so for them I've created a second configuration but when

L3 vlans and devices/systems that don't support vlanning issue.

Hello all,

I've recently setup our PAN-2020's with L3 sub-interfaces presenting VLANS to our core switches (per this discussion: ). However, I've run into a problem that I can't manage or connect to devices, like our SAN, KVM, and even the PAN Firewa

Any chance of having automatic config backup option on the firewall (not Panorama) in the future

Heylo.. any chance of having the PAN firewall (not Panorama) do automatic backup of configurations as per time/date settings?

I am now having customers asking me if PAN have this somewhere down the line being implemented on the firewall.

Cheers..

Kalyan

GlobalProtect Portal has a problem with DHCP Ext interface

I'm hoping that someone from PAN Support or Development can answer this question.  I have been fighting with this for weeks now and have narrow the problem down to the GP Portal service.

Scenario

I have a PA-200 in my lab with two Layer3 interfaces def

Best way to block private ip's but make exception for 1 network.

I just upgraded from 4.0.7 to 4.1.6. Since this upgrade our monitoring server in the LAN 10.x.x.x/24 can not browse to our web servers in the DMZ 192.168.X.X/24. It shows up as, action  blocked-url, with Category of private-ip-addresses. I have priva

Need help with Enterasys NAC/NMS and PaloAlto UserID

I am trying to make the Enterasys/PaloAlto integration from this doc work:

Running 4.1.6 code on the PA-4020 and the associated UserID agent on a single server.  I followed the directions exactly but see no evidence info is making it to the UserID age

ARP Cache Limit on PA-500

Hi PAN,

When is that the PA-500 will have an ARP cache limit of 1000?  I was promised during the launch of version 4.1 that the ARP cache limit had been increased to 1000 from 500 just to realise that it never happened. 

I am desperately waiting for s