Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi,
With legacy URL filtering no longer available we've renewed our subs with Advanced URL Filtering instead.
The license for this appeared in the support portal but did not come down to the firewall itself (still showing the legacy sub which expires i
...
Hi mates,
I was wondering if there are any ways or tools to block the GlobalProtect connection when another type of VPN is up and running.
The main goal of this is to get the right country of origin information on the GlobalProtect logs on the firewal
...
Hi,
We have a PA with two VPNs configured. VPN-Main is the active one and if this vpn falls, the traffic must go through the other VPN-backup. The fact is that when the active VPN falls, the route that has the Palo Alto continues going through the pr
...
Hi
I have two virtual routers say customer-1 and customer-2 having subnets 10.10.10.0/24 (overlapping subnet). Now internet connection line is on eth1/1 which is in default virtual router. Both customer-1 and customer-2 needs to access the internet b
...
Sweet32,3DES, SHA1,RC4, disable, using "RSA certificate" with SSL/TLS profile
Hello good evening, as always thank you very much for your support, please help me to clarify an issue related to weak encryption of TLS/SSL Web-gui using rsa certificate t
...
When connecting to globalprotect, using MFA, sometimes after login there is a certificate popup that details the GP certificate. You have to click ok or cancel.
Anyone know what the deal is with this? It's not consistent, and it's not an error, but
...
Hello,
I'm currently receiving multiple errors like this:
This is not the first time. In the past, I was instructed to log in in to the live co
...
Hi,
I'm currently managing a PA-220 and have setup URL-filtering.
I can see which IP-addresses that tries to access the blocked websites.
Is there any possibility to resolve/match this IP-address to our DHCP server to see exactly which mac/computer it
...
Few emails are neither registered nor getting suffixed from the Splunk SIEM solution.
A TCP dump from the server to identify whether the logs with the email address abcdef@123.com are coming directly from the PA firewall shows that those are from the
...
I have been tasked to lock down access to our devops environment for developers over VPN. Developers using non-corporate assigned assets (workstations & laptops) will only be allowed access to their desktop workstations in-house over RDP. Developers
...
Hi,
My home setup includes PC with multiple NIC's and a VMware Workstation that has my virtual lab (Windows domain controller, 5 ESXi 7 hosts, VCSA and some other stuff) This is licenced via VMUG programme.
My main PC goes through one of NIC's direct
...
When committing a template only change from panorama to managed firewalls in a HA pair the commit fails.
When committing a template change along with a device group change it succeeds.
Template only changes commit fine when being pushed down to manage
...
I'm curious about how Azure's VM-Series licenses are authenticated.
As far as I know, VM-Series licenses are authenticated through CPUID and UUID, which have information in Azure.
We get this through the permissions of Azure Configuration settings.
Is
...
Hello,
I am trying to look for a solution to an issue we have whereas we don't want to add routes from Azure (via ExpressRoute) to an on premise for public IP's for which Azure devices need to connect to via a Palo Alto firewall and across a VPN to
...
TomYoung
on:
One Global Protect Portal and Two Global Protect Gateways in One Firewall
OtakarKlier
on:
Restricted tcp flow throughput in a VPN tunnel
reaper
on:
password reset for user through support.paloaltonetworks.com
OtakarKlier
on:
Disable USB Port on Firewall
PavelK
on:
Web Auth FW with HA
reaper
on:
Negate Deny Rule
