Ticket cannot be generated due to TSF file loading failure

We are trying to generate a support ticket, but when loading the files (including the TSF File), the upload stays like this, without allowing the ticket generation.

Setting Up a Remote VPN using Connect Before Logon

Looking for some assistance as I am building out a remote vpn using Connect before logon for my Palo Alto. 

Does anyone know a simple, easy way to set this up with LDAP. Some article are outdated and some are inconsistent in their approach verse othe

Unable to commit changes

Hello team, i have been facing the below error when trying to commit changes in palo alto firewall pa-1420

invalid local dhcp setting for monitor destination 8.8.8.8 (module routed client routed phase 1 failure

please help.

GlobalProtect fails to connect to backup gateway when portal is down

Hello,

PAN-OS 8.1.4; GP 4.1.6
I am using only the one VR with dual gateways and ECMP routing enabled with WRR (Weigthed 1/4 (WAN1=50, WAN2=200).

I have one portal configured for WAN2. I have two (2) gateways; one on WAN2 and one on WAN1. When WAN2 is

Unable to open TAC cases due to mandatory TSF file upload requirement

hi guys, 

I am trying to open a TAC case in PA portal, however it seems there is latest change happen which requires a TSF file upload mandatory.

SInce we are a restricted site, we cannot share or upload anything on the portal. Because of this issue,

Hardening Guide for PAN NGFW and Global Protect

For compliance reasons, specifically StateRAMP (and likely FedRAMP in the distant future), I'm looking for any hardening guides or STIG for the PAN NG-FW and Global Protect or even general best practices.   I feel odd asking for "security hardening"

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

Firmware upgrade ver from 10.2.10 to 11.1.x.

Hi Support,

Our organization is in the process of upgrading the firmware of Palo Alto 460. We are now on 10.1.10. We would like to upgrade to 11.1.x. I would like to know which is the recommended version. There is always a dilemma of which version is

how to uninstall global protect when it keeps reinstalling even after i uninstall it (i have admin)

Hi there,

Ive tried to uninstall gp from my computer, however, it keeps reinstalling. I have tried deleting all files related to gp (e.g appdata gp files and gp program files). ive also tried this method (link is below) but it doesnt work as it kee

Mulit-Vsys setup with Wildfire

Hi Friends,

We are planning for a multi-vsys PA setup, where one vsys will have only L3/L4 policies and second vsys will be in L2 bridge mode with Threat prevention features only.

Vsys1 will only scan L3/L3 policies while vsys2 will scan traffic fo

Site blocking under music category

Hi Team, 

One Visa processing URL blocking under Music category in my firewall. I ready added the this site into allowed list. But still blocking under music category. How to allow this URL make acces withough enable music category. 

IPsec tunnels to multiple peers with overlapping remote networks

Say I have site-to-site IPsec tunnels from my Palo to 2 different peers.  How do I handle the case when the 2 peers have the same or overlapping networks?  Do I ask one of the peers if they can NAT their network to something that doesn't conflict wit

GP Always on VPN - Except if on internal LAN?

Is there a way to implement this? I have seen the internal host detection option but as far as I can see that is only to choose whether you connect to an internal or external gateway.

I want all remote site users to go through the Palo Alto, but I can...

GlobalProtect Always On Issue

I am currently testing GlobalProtect Always on, I have configured to operate at user logon. The issue I am having is that on start-up of my laptop, on my corporate network I am prevented from any network access. If I connect to my public WIFI and con

how to add certificate global protect for ipad

Hi everyone,
"I'm stuck at step 7 (7- Settings > Profile downloaded >"Im stuck in" Install > Enter phone Passcode > Install > Install > Install >
Done),
When I install the certificate, it shows a notification that it cannot be verified "not verified'
Wh