what is the meaning of "tcp client reset via TCP responding rst" output in global counter

We are not able to connect VPN hosted in vpn_dmz zone.

We have deployed third party vpn in vpn_dmz zone and configured inbound nat for same.

Its old setup , all of sudden we are unable to connect vpn intermittently.

did pcap for vpn public ip , showing

Advice on using MFA between Duo vs. Azure MFA vs. Okta

Anyone setup MFA on Global using Duo, Azure or Okta?

Just looking for a pro/con list concerning the following items:

• ease of setup/config
• cost per user
• ease for end users
• any other concerns

Palo Alto Networks Announces Prisma Access 2.0

Palo Alto Networks announces Prisma Access 2.0, expanding the industry’s most complete cloud-delivered security platform.

Prisma Access is the only solution that protects all apps with best-in-class security while delivering an exceptional user exp

Simulate SIP Traffic in Lab

Hello Everyone, 

Like most on this form, I believe I am having issues with SIP, which is causing some soft phones to reset. I have started gathering a list of possible fixes that have been posted by the community and Palo Alto. I want to try these fix

Decryption Certs

Does anybody know if we support separate Decryption Certs in a multi VSYS environment? I have an MSP who wants to use different Certs from each of their customers. 

Thanks

Papercut Mobility Print - NG-Firewall - Application

We are moving more and more from Citrix, to working on the laptop. A lot of out users are used to "printing" there documents for the next day, so when comming into the office, they just walk to the printer, present there RFID-tag, and presto.

We us

Web sessions getting blocked when session switches user ID mid stream

Let me first preface this by saying I am not our network admin, and I have no access to our Palo Alto devices, but since the teams here that are supposed to be managing them cannot be bothered to look at our issues, I wanted to see if this community

User-ID mapping for users logged in to a domain controller

Hi Guys,

Does anyone know or have experience on configuring User-ID agent to perform user mappings for users who are currently logged in to a domain controller.

The issue I am facing is that anyone logs into a domain controller is not being pickup by

Why does GlobalProtect VPN client for Windows keep getting worse?

This client used to be fine.

Then we upgraded it and some silly Windows notifications kept popping up which were annoying and, more importantly, caused the textboxes to lose focus while you are typing a password/key.

Now we're up to v4.0.0-90 and thi

Auto TAG - XFF IP

Is there a way to auto TAG - XFF ip's in log forwarding profile

Firewall slowness

Hello,

I am facing an issue with my firewall. it is very slow in the GUI as well as CLI. if i click any tab in the firewall it is taking too much time to refresh and loading the page.

firewall model - PA-500

PAN-OS version - 8.1.15

below i check from