Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi Everyone,
I've been madly studying the Packet Flow Diagram that outlines the different checks/stages that a Packet goes through via a PA FW and I had a question with the 3rd check in the Ingress phase called 'FW Inspection applicable'. If Inspecti
...
Hello, we have an existing opened case PA case (01865541) but having trouble and delays in getting connected with PA engr. Hence, am trying my luck here in Live community.
My customer is preparing to implement the PA External Dynamic List (EDL) IP/
...
Hi,
I am trying to configure User ID with Active Directory. But stuck with some errors, listed below :
1) Unable to retrieve the Userid IP mapping information from Active Directory (win 2003 Sp2).
2) After installing the User ID Agent and configuring...
...
Hello, I have a problem.
I just inherited a palo alto firewall.
I noticed that given a specific certificate and given the global protect client, every user of the ldap server can connect to the vpn.
I would like that only users in specific ldap groups c
...
After the .NET/User ID agent issue last week we upgraded the agents and managed to get our UserID mapping back so our firewall policies would work again.
At this point I have user > IP mapping, all of my agents are connected and my user based firewal
...
I'm wondering if anyone can help. We have global protect setup and i want to use the same IP Pool for pre-logon user's, and once authenticated have that same IP pool used for the user. So when i am setting this up in the client settings area of the G
...
Hello Group,
I have done migration from Cisco ASA Firewalls to Palo Alto Firewalls.
In Cisco ASA Firewalls, I was using multi-context (there were two contexts, Context-A and Context-B). Context A was active on Firewall-1 and Context-B was active on F
...
Hey Community:
I am in the process of rolling out GlobalProtect, but until I do, i have to continue to use a pfSense OpenVPN that was already in place before the Palo was deployed.
The problem I am running into when i connect to the pfSense VPN i cann
...
we have configured Panorama M200 in HA , configured managed collector with local log collector , configured collector group and added local log collector of both panorama, redundancy is enabled in collector group (log forwarding preference is not co
...
We want to disable redundancy in existing collector group configuration due to less available space for logging one year logs.
In our setup we have M200 in HA and configured local log collector in both Panorama. Configured collector group and added
...
Hi Expert ,
I Would like to know about WF-500 can customer Image and Import to Appliance? Because the predefined image is not related to versions on the existing environments such as office and adobe.
Thank you
Hi Community,
I have a strange situation, maybe someone can help:
Panorama on 10.0.6, Firewalls mostly on 9.1.x.
We onboarded the 1st 10.0.5/6 firewalls and noticed, that we don't receive any logs within our dedicated log collector.
The collector group
...
Hello folks,
Posting here as a final act of desperation. I am still pursuin the case with TAC, but I hope that perhaps someone will have seen something like this before.
Our network resides in a hosted ESXI environment provided by iLAND. We have an H
...
Hi community
This post is either to inform you about a possible problem and also to ask if someone already saw this and may be even has a solution.
Some days ago the global counter for proxy_wait_pkt_drop started to dramatically increase on a PA-32
...
