Blocking ChatGTP

Hi Guys,

@BPry 

@kiwi 

How do you go an blocking ChatGTP ? Seems like has not been defined in the list of apps yet (applipedia)

Thanks,

Pkarki

IPSec VPN Idle Timeout

Hi All, May i know what is the default ipsec vpn idle timeout in case we didnt configure the tunnel monitor for PA 820 ?

API - Fetching URLs from Custom URL object

Hi all, we have a Custom URL category object, WL-URLS, which contains a number of URLs for a whitelist policy.

I am looking to find some information on how to go about retrieving the URLs from this object via the XML API. My preference is the XML A

365 tenant restrictions problem with office365-enterprise-access

Noticed that a few of our enterprise logins that were previously identified as "office365-enterprise-access" are now being identified as "ms-office365-base".  I've found an article explaining some of the issues.   I know that this was working flawles

GlobalProtect and multiple AAD tenants

Hello -

We've set up a GlobalProtect portal and gateway to connect third-party individuals to our VPN. We've configured it to use SAML for authentication, leveraging an Azure Active Directory Enterprise Application that we have configured per the M

Entries in User-ID table show info pushed from XMLAPI never timeout

Hi guys,

My customer previously used XMLAPI to push User-ID info to Palo Alto but they now have an Aruba Clearpass appliance which will be handling all User-ID information via Syslog.

Due to software issues they cannot currently use XMLAPI between Clea

SSL Inspection and SSL Labs

Outside of minimum and maximum supported tls versions and ciphers what are some things to look for on SSL Labs that would be breaking decryption. In the Palo decryption logs if it shows error "Early close notify" what would be something to look for a

GP Compatibility on Windows Server

Hello, everyone.

Does anyone know if you can install the Global Protect agent, on Windows servers, such as 2012, 2016, 2019????

Is there a documentation that tells me and confirms this?

I see in the Palo Alto Firewall, that the computer does not give

SSL decryption - How to deal with third party sites that don't install the intermediate certificate?

I turned on TLS (let's start calling it what it is) decryption for our IT personnel only a couple of years ago.  It was considered a pilot and I always planned to work with our legal department to craft a policy and start rolling it out to the broade

Next Hop in default route using DHCP Comcast modem

Hello Group,

I am setting up a PA-200 in my SOHO with comcast as my ISP.  I have comcast for my isp and am using DHCP to optain my IP address.  My question is this.  Per the setup guide, if I check DHCP under the IPV4 tab, and check, Automatically cr