Log Forwarding - Traffic Works, Others Do Not

I have to be missing something simple, for forwarding logs to a collection server. I can get the traffic logs, no issues, but all the other logs, will not send (Threat, Wildfire...). Do the other logs need some kind of special forwarding, or permissi

Block the Teamviewer connection from outside to a specific computer

Hello! Is it possible to block a user from using Teamviewer whether he or she is on a personal laptop or mobile device using the Teamviewer app to remote/connect to a specific computer inside the corp network? HR has asked to block any outside connec

Zone Protection Profiles

I need to configure a zone protection profile and assign this to our outside interface. However when i attach the zone protection profile to the zone in question users who connect via the global protect vpn client it seems to stop users connecting.
Ha

Terminal Services Agent allocates ports outside the defined port range

Hi,

I have the problem, that the Terminal Services Agent sometimes allocates ports to users that are out of their port range.

That leads to the usage of wrong security polices.

For example for one user I configured 22800-22999 as the port range.

That u

GlobalProtect not allowing internet access when Parallels or Docker are running

MacOS installed: macOS Sonoma 14.5 latest

GlobalProtect client installed: 6.0.7-372

Parallels Desktop: 18.2.0 (53488)

As the post title says, when Parallels or Docker are running, our GP isn't allowing network access (myself and others are having s

User-ID Agent Connected Status Shows Red

This is a PSA for anyone having issues connecting/ setting up the User-ID Agent program on a Windows server.

After installing the correct User-ID Agent from Paloalto's support site, you need to make sure you've set correct security/ access settings fo

Unable to add AD group to Group Include List

System logs showing error:

User Group Count of 'xxxx' Exceeds Threshold of 1000.

I am trying to shrink the group numbers by using specific user group.

Issues:

1. on Panorama template setting, there is no option to select the user group, pls refer t

After upgradation no traffic flow between DMZ to WAN

Hi Team,

I hope you are doing well.

One of our customers is attempting to upgrade their PAN-OS version from 11.0.4-h1 to a higher version, as the 11.0 version is nearing its end-of-life.

The issue encountered is that whenever we upgrade beyond

Error deleting custom URL categories?

I created a custom URL category and then tried to delete it and got this on the validate, any ideas please?

Operation           Validate

Status   Failed

Details  member corp-blocking-exclusions is an invalid reference

Invalid block

Invalid url-filtering

Panorama and firewall upgrades schedule

Have a question related to the upgrades;

Can i schedule the Panorama software upgrade ?

Also , can i schedule the Managed firewall upgrades through Panorama ?

I see schedule option for App and threat updates but not for PanOS images

List of domains to allow for in-flight WiFi

Hi all,

I've been working with a number of customers lately who have been trying to gather a list of in-flight wifi domains that they need to allow as GlobalProtect Enforcer exceptions and I thought I'd share them here. I'd also ask that you please