Prevent Globalprotect from connecting when user on internal network

We want to prevent Globalprotect from connecting when user is on the internal network. We have the client set to manual connect/disconnect but users can be stupid and connect anyway.

We don't have an internal gateway, and dont want any ssl tunnel when

GlobalProtect on internal connection does not display loginID

Hello

We have a issue with global protect:

when a user logs in to globlal protect from the outside it shows the LoginID correctly, but when the user logs in internally it does not show the UserID.

Any idea why this is happening?

Thank you very much.

B

Unable to Download 30 Day PA-VM | An error occurred while processing your request

Hi Guys!

So I submitted my request to get my Palo-Alto 30 Day trial license.

I Got Approved & received an email from them with a download link. Now Once I try to download the VM I get the following error:

An error occurred while processing your reques

Unsynchronization in the log display in paloalto FW

The hours in which events appear in the Paloalto log do not correspond to reality. They appear several hours after they have occurred.
We have checked that it is not a problem with the NTP, this seems to be a problem with the time at which Paloalto sh

Panorama not show rules shadow

Hello,

I have several devices managed from Panorama. All in version 9.1.7 .

When I commit from the team it shows the rules shadow warnings but when I do the same from the panorama it is not shown.

Does anyone know the reason for this?

Is it possible to s

VM-100 maximum number of interfaces on KVM

For some reason, after activating the license on VM-100, I still only see 8 interfaces even though I have interfaces configured in the VM settings.

I thought KVM supports up to 25 interfaces.

This is running on KVM on Ubuntu LTS 20.04

vm palo question on interfaces for esxi

We have an exisiting vmware esxi environment that has 3 hosts with distributed switches configured.

Currently, each esxi host has 4 links (all trunks) going to the physical uplink switch.

We've installed a VM palo series firewall and have established

Block web advertisement with exceptions

Hi All.

I'm looking for a good way to block web advertisements but make an exception for Google ads which appear when you do Google searches. Does anyone have a good way of doing this?

Thanks

False Positive Virus PDF

Hello,
We are detecting that several PDFs that we share on our internal network are being detected as VIRUS.

As we have the antivirus profile enabled in a security rule the session is reset .

Does anyone know how I can avoid this?

Regards

Ipsec tunnel issue

there are two location site a and b in which i created a ipsec tunnel between them its up.

As i ping there LAN IP i am able to ping. there LAN network

Site A LAN network is 192.168.4.x/24 Site B LAN network is 192.168.x.1/24.

I am able to ping both the

Could Sophos in house users connect to GP of PA firewall

Hi Team

I have a concer where we have a scenario.

(Branch office )Sophos -----------ipsec----------- PA(head office)

Could Sophos users that is branch office inhouse users connect to GP configured in Palo Alto firewall which is in head office. This co