2 VM series HA Setup in Azure with ELB

Hi all,

I've setup 2 VM series in a sandwich topology and want to know the following in terms of the setup:

How to configure the 2 virtual routers being trust and untrust for the static routes that point to the ELB?

How to configure the NAT for outboun

Renewing a Subordinate CA Certificate for firewall, issued by MS Server Enterprise CA

Hi,

I've been looking all over for some guidance on this, without much joy.

I am trying to renew a subordinate-CA certificate on a firewall, that was issued by a Windows Server Enterprise CA.

Obviously there is no Renew function on the firewall for t

syslog server logs

Hello,

I am facing an issue to get the alerts for my syslog server ( description contains 'Syslog connection broken to server[\'AF_INET.127.0.0.1:2625.\']' )

every two hours I am getting alerts. i checked the sys-ng.log and took the packet capture bu

LAN to Portal/Gateway Externo same Firewall

Dear:

Good afternoon, is it possible from my LAN network, to connect via Global Protect, to the external portal/gateway of my Firewall ?

I tried, despite having the permissions at the policy level and it fails to establish a connection.

Is it strictly

URL Filtering override tab after upgrade.

I am planning to upgrade firewall cluster from 8.1.18->9.0.14->9.1.11.

9.0.x says override tab is removed.

Is it the case with 9.1.x as well?

I have lot of domains in override.

Slowness when filtering at destination in a rule by address-group

Hi,

We are having slowness in a traffic when the destination in the security rule is a address-group. If we configure "any" in destination the session are fast. The traffic is 443 (web-browsing).

How PA can cause slowness in https if the destination

PBF policy match works in CLI but hangs in the GUI

Hi,

Came across an issue where a PBF policy match works in the CLI, but not in the GUI. When you run the test in the GUI it just hangs. The PBF rule is working as expected in production, its just the test in the GUI that seems to fail. Anyone come ac

Globalprotect Smart Card configuration

So my company is working to setup a new PKI infrastructure with smart card logins for the users. I have looked at all the 2FA and associated articles about setting up the VPN but it leaves a lot to the imagination. I followed the steps creating the c