Ignite 2020 Coffee Table Chats Times

In last week's blog, we touched on the coffee table chats that will be taking place. Today we announced the specific times as we we want to make sure you start putting them on your calendars for next week!

Whether you have 10 minutes, an hour, or m

Connection Failed: Could not connect to the GlobalProtect Gateway.

Hello,

We are facing the following issue with the GlobalProtect client: (client version 5.0.5-28)

When the user downloads the client and logs in for the first time, the user is connected successfully. However, when the user disconnects and connects a

Unable to open a support case

Is anyone else having problems opening a new support case via supportcases.paloaltonetworks.com?  Whenever I try to open a new case I am able to complete step 1 just fine however when I get to the section of selecting the asset effected there are no

Support license -who own serial number

Hello , We have a customer B who was earlier supported by a Company X 

Now customer renewed all the Licenses -Threat Prevention , GP , URL filtering etc through our company Y ( We are PA Partner)  and also the Support contract with us ;

As per custome

Best Practices query for Security settings

Hi ,

I have a customer who has Threat prevention , AV, Wildfire ,licesne

The Network is divided into various Security Zones - like Users , Printers, Voip , Front end servers , Backend Servers , there are around 15 zones

Now we have the BPA report and

LAB'ing PaloAlto

Hi, 

I have installed a couple of PA-vm firewalls but i am not able to test upgrading PAN-OS or enable multi Vsys support.

Am I using the wrong model in the lab? Is there a way I can do the above? Are there any trial licenses without limitations?

I lo

scheduled policies to affect existing sessions

Dear community,

I configured schedule on policies and it seems that as per design the existing sessions are not affected by the schedule:
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-web-interface-help/objects/objects-schedules.html 

Meaning th

LIMIT SERVICES (2000) IN PA 5020 ios 8.1.10

HELLO EVERYB,

i there any way to increase de limit of servies? in our case er arrive to  2000 service (ports) in PA 5020 WITH IOS 8.1.10?

have i to increase at the hardware level? or sfoftware?

thank u so much

Need a way to move big number of selected policies to the desired location

Dears,

As a cleanup to our policies in the firewall, I added a tag "Zero hit" to the policies that never trigger a hit. I have a huge number and I would like to move them all to the bottom.

I tried to find a way to move them to the location I want and

Request a Signature for CVE be Mitigated

Is there a proper way to request a CVE be mitigated by the Palo firewall and added to the Threat Vault?  

I have read the conditions for a signature being added, but it doesn't tell you where to request one. 

https://knowledgebase.paloaltonetworks.com

Error in CEF format for Threat logs

The following guide provides the parsing for CEF-style Log Formats for PAN-OS 9.1:

https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/cef/pan-os-91-cef-configuration-guide.pdf

We have been using this for a while, but because now we have

List all deny rules from cli

I have to list all deny rules (from cli)

The following command "show running security-policy | match index " list all security rules by name

For example:

"AllowBrach1IN; index: 1" {

....etc

What I want is:

- deny INBOUND traffic rules only but regarding en