User-ID not mapping all traffic

Why the user-id is missing for some traffic. This also causes issue with policies using user-id. 

Below traffic log is for same user/zone/ip

URL Categories and SSL Decryption

I'm having an issue with URL Categories and SSL Decryption. I have two decryption policies; the first is a no-decrypt policy for URL Categories matching "financial-services" and "healthcare-and-medicine," and the second policy is a decrypt-all for se

Caveats for HTTP Header Insertion for GDrive / Google Apps

As of the time of this writing (May 2020), there are some caveats / required steps for HTTP header insertion into GDrive applications that are not clearly documented. The purpose of this post is to close that gap until documentation is amended to cor

Windows 10 Global Protect (Version 3.1.1) Portal Config Does Not Exist

Greetings

I have a new laptop.  Windows 10.  I have installed Global Protect version 3.1.1.  After entering the portal IP and user log in information I cannot connect.

Details of the log are as follows:

etWscEvent
(T9344) 10/21/16 12:49:07:580 Debug(

VM-100 under Dell PE2950 - and new suitable HW...

Hi

We have had a VM-100 under VMWare 6.5 ESXi on a 32Gb Dell PowerEdge 2950 for a few years now.  We serve a 250 students' high school with dorms so the FW works around the clock...  Throughput has been ok with few complaints, but when I checked the m

Skype for Business Server 2015 - Block only instant messaging

We are currently developing a proprietary WebRTC solution which we will use to replace Skype for Business.  We are currently looking to roll out instant messaging on the custom product and would like to disable/block only instant messaging traffic in

Clientless VPN

Hi Team,

Iam  facing the issue with clientless VPN when I  open the application and checked  the some tab in application they are not loading. when i take the packet capture i found lot of error" Ignore Unknown records".

TAB are not Loaded.

KnowBe4 Phishing Training and WildFire testing

My company uses KnowBe4 for email phishing training.  During our current campaign we discovered that test emails were getting opened and attachments or hyperlinks were triggered identifying a test failure.  This happened when the user could not have

MineMeld and Prisma Access API

Hello everybody,

has anyone ever worked with MineMeld and the API to Prisma Access.

There is this PrismaAccess (https://github.com/PaloAltoNetworks/minemeld-prisma-access) API extension for MineMeld (I know it is only experimental) but I would like

Issue with PBF Symmetric Return

We are running PanOS-10.0.2 on our PA-220 and we are having an issue with a PBF rule which seems to be denied even though it should match the traffic.

The setup:

2 WAN interfaces:

• Primary = PPPoE interface on ETH 1/5. Route is added to router when PPPo

Need to Allow Video-Streaming from Specific Website

Hello Dears,

 Requirement:- I want to allow only some educational videos (educational videos belong from training and tools URL category) for my environment.

Below i have tried:-

• I have checked all the streaming videos played on YouTube or any the strea

HA cluster

Hello, Can you form a HA cluster with a PA-3020 and PA-3060? Or do models have to be identical?