IPsec to Azure with a DHCP WAN IP + SDWAN + GlobalProtect

I tried to go down this rabbit hole once with no success.  The IPsec tunnel to Azure should be fairly easy, it's what I already have configured that complicates it...

I currently have a PA-220 with (2) WAN connections [both DHCP] and currently usin

Migrating from PA-5250 to PA-5410

Hello folks,

i need to migrate from PA-5250 to PA-5410, the old devices are managed via panorama using stack and stack template, the new devices are reachable with no configuration other than the management.

What is the best way to move the configu

GlobalProtect Portal require :443

Hi All,

I have an issue where we need to input <firewall IP Address>:443 in order to connect. But some of my users does not require the :443 to connect to the VPN.

Screenshot as shown below,

Any way that i dont even require :443 to be connecte

Captive Portal SSO browser-challenge issue

Hi, 

We would like to deploy captive portal instead of using userid. We would also configure it so that the user does not have to login or get a login page. However, the browser-challenge seems to fail and then the user gets redirected to the defau

Doubt configuration HA Paloalto-Aruba

Hello to all

I have a pair of FW PA-460 active-passive. When we perform Failover I lose 40 seconds the network to the internet. i have only HA1 connected on a pair of SW aruba. I suspect it may be an Aruba or Paloalto configuration issue. Any idea?

B

Meraki behind PA - Unfriedly NAT

Hello community,

another person with the problem. I know, I know. Finding a solution to this problem is obviously not easy.

I have a problem with a Meraki cluster behind a PA cluster.
The problem is the familiar “Unfriendly NAT”.
I just can't figur

Join Us For a Fuel Workshop on GlobalProtect Troubleshooting Techniques (APAC Region Sept 17-18)

Fuel Workshop on GlobalProtect Troubleshooting Techniques

Welcome to the next in our series of Fuel Workshops where will be covering troubleshooting techniques for GlobalProtect. Over the next two days, we will be learning a number of items relat

End users selects DENY on the MFA prompt on the phone still are able to connect to GlobalProtect agents

I need some advices on this GP VPN Client with MFA issue: 

End users selects DENY on the MFA prompt on the phone still are able to connect to GlobalProtect agents

The current auth environment is that users use Active Directory in Azure  for MFA and u

Private/ Assigned IP change frequency

When I connect to GlobalProtect VPN, I get assigned a private IP. I want to know, how frequently does this IP change.

Palo Alto Networks Certified Cybersecurity Entry-level Technician (PCCET)

Siber güvenlik seviyesindeki dosyalar görüntülenmiyor. Nasıl düzeltirim

Automatic Deploy of Firewalls into Panorama trough api or sdk

Im trying to automate the deploy of a firewall into panorama using the python sdk (pan-os-python)

It seems I can add devices to panorama by the serial number, but i cannot make them connect cause it need the auth key to be set when adding the firewall