diffternt TLS protocolsbetween client and server supported in pan ??

we have a legacy client which supported only TLS(1.1) & need to connect to server in cloud which works on TLS1.2 only .. So If we do a SSL Decryption in pan firewall does pan will allow tls1.1 between client and pan firewall and tls 1.2 between pan f

How to send traffic for email logs to port 587

HI Everyone,

I have configured email profile to send system logs of firewall. I have configured the smtp server and my SMTP server is listening in port 587 but the firewall is sending traffic to the destination SMTP server using port 25.

Can anyone l

Problem with Macos 10.15.5 with no HIP report

Hello,

I'm facing a strange case with a Macos device running under 10.15.5, with Global Protect 5.0.9 installed.

On the client side, there is no information displayed in the Host Profile tab.

The client logs show no particular problem, and the HIP repo

GP Issue with LDAP timeouts

Hello Folks ,

We are having an issue with LDAP auth . We have two servers in LDAP profile

10.1.1.4

10.1.1.26

The timeout settings are

Bind timeout 30 seconds

Search timeout 30 seconds

Retry 60 seconds

The GP timeout is 80 seconds

The behaviour is quite r

Unexpected behaviour in security policy

I have one server belongs from the DMZ zone.
Example:-
server ip- 2.2.2.2
source ip for VPN user - 1.1.1.1
VPN zone
DMZ zone

There is 2 scenerio:-
policy(1) - I have created a policy like:-
sourcezone- VPNzone
source ip - 1.1.1.1
destination zone - DMZ zone
des

Failed to add imported nodes into Panorama

Hey Team,

I thought I would share my experiences with adding firewalls into Panorama and receiving the error message in the subject. The scenario is a HA pair with multi-vsys compatibility enabled - and 5 virtual systems. In all cases, adding the Pri

New AppID Category

I work for a K12 School district, and like many K12 school districts we are preparing for online testing for state proficiency testing.

We have also used online testing for AP testing, vocational testing, etc...

Online testing is one of the high priori

wildfire logs showing allow action for malicious url

Two wildifire logs (16 July and 20 July )  are showing for same url with malicious verdict and action is allow. We have checked wildfire report of both logs , all information is same (same hash value , first timestamp seen is 7 July etc. ).

If same ur

Global Protect Client won't reestablishment connection after update

Hi,

currently, I have a problem with the Global Protect Client Update.

After using the GP Client version 5.1.1 I updated to GP 5.1.5 but after the update the connection refuses to re-establish the connection.

The KBArticle (https://knowledgebase.paloa