Exclude only communications on specific port numbers from Global Protect

Is there a way to exclude traffic on port 8080 from the VPN tunnel while connected to Global Protect?

I want to establish direct communication exclusively over port 8080, separate from VPN traffic.

Is it possible? If so, please tell me how to set

Request for Documentation on VPN and Routing Log Events

Hello Everyone,

I am looking for official or community documents that explain VPN and Routing system log events in detail on Palo Alto firewalls.

Specifically, I’d like to:

• Understand the meaning of log events such as ikev2-nego-ike-start, ipsec-key

Device and customer codes do not match a Support Account. Please contact a Super User to send you a registration link

Hello Team,

I am trying to register a PA-1410 device on the palo alto network support portal, but I'm running into follow issue.

After I enter Device Serial Number / Sales Order Number its throwing below error.

'Device and customer codes do not

The PA-460 firewall is inaccessible due to severe latency

Hi Friends,

1) The PA-460 GUI takes a very long time to load, often more than 20 minutes, and sometimes the firewall becomes inaccessible due to severe latency
2) We reviewed the software running status and restarted the management server process fr

TCP MSS

 Below is the statement on MSS from PALO ALTO KB:

1. The TCP MSS, the maximum segment size, is a parameter of the options field of the TCP header that specifies the largest amount of data, specified in bytes, that a computer or communications device can

Unsure of changes committed in Panorama but nothing showing in previews..

I have two firewalls showing out of sync. I am unsure of what changes have been made if any and this is just cosmetic. When I click preview it loads at 0% and closes, nothing shows.. How can I confirm if changes have been made before pushing to the P

VPN Gateway fails to authenticate clients with new certificate uploaded

Dear all,

We have a Palo Alto VPN gateway at our office, where our clients and customer’s Palo Alto connects to!

Our certificate at one of our customers site has expired and the vpn connection is down and hence to the isp!

Now I have generated a

Concern Regarding Inclusion of Open-Source Projects in "Shareware and Freeware" Category in Advanced URL Filtering

Hello Palo Alto Community,

I am writing to raise a concern regarding the categorization of websites under Palo Alto Networks' Advanced URL Filtering. Specifically, I have noticed that sites providing access to open-source projects (such as Github,

Replacing HA Hardware

Hi All,

I need to replace 3220 in HA to 1420 in HA.

- The 3220 running 11.1.3-h3

- I installed 11.1.3-h3 on the new 1420s.

- Installed the same version of the apps and threats.

- exported the running config from the 3220

- imported the config to the

SFP Compatibility

hello tech enthusiast, 

I want to connect a fiber cable between two PA firwalls, thats what i did but i have the interface down on both ends even, and i dont know what to put as a SFP Plus, when i run the command show system state filter sys.s1.p6.

Can`t proceed to customer support portal

The first i created an account for Customer support portal and I'm Stock with this

Your account is currently waiting for your company’s Super User Approval. Access will not be provided until this approval is received. To help speed things along, yo