Panorama: cannot use in templates objects from DG

Dear Community,

I have a Panorama with several firewalls in a device group under the share one.

I have several templates and I cannot select any shared object from DG into any part of template configuration, for example adding an address object as an

Pre-logon for specific user only

My requirement is that some user should use Pre-logon and other should use User-logon. Currently all users are using only user-logon mode.  

Is it possible to use both mode in global protect, because we have to call client certificate profile on globa

Allow only MS Intune and Windows Update - block all internet access

HI,

I am after permitting only MS Intune and Windows Update - block all internet access.

I have followed the custom URL filtering as mentioned in the link below:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRfCAK&refURL=h

Qos question

Hi,

I have traffic shaping enabled on FG and at the same time PA also.

traffic flow is as below 

client  goes through  FG then PA then go to internet or wan 

traffic shaping  policy running on  fortigate  , and qos policy is there on PA also 

Let's say if

Session created by Syn Cookie

Hello,

what process and what is going on if a session (SIP) is created by "Syn Cookie" ?

Is this a valid Session, does this indicate a Problem ?

We configured an App-Override Policy to mitigate Problems between Phone-System and SIP ALG.

We see now all

IPSec site-to-site tunnel not allowing all traffic both ways

I followed the guides to set up an IPSec site to site VPN tunnel between our main office and satellite office using static routing, but I can't access our servers through the tunnel. From the main office, I can access everything on the satellite offi

Block Facebook Posting

Hi everyone：

PA Firewall seems to be unable to Block New Facebook posting.
Does anyone have a way to block it?

BR

Richard

GlobalProtect Xauth for iPhone and Android

Need Help deleting files on PAN /dev/sda8 and /dev/root

Hi All,

Need help on how to free up spaces on the below partitions on my PAN device, support cannot seem to figure this out. Please help..

Filesystem Size Used Avail Use% Mounted on
/dev/root 4.0G 3.4G 407M 90% /
none 4.0G 56K 4.0G 1% /dev
/dev/sda5 24G

install PanHandler on Windows 10 system.

Published install instructions for PanHandler are for MAC and Linux systems.  I run Windows.  Here is how I installed PanHandler on my Windows 10 system.

Install Docker for Windows from the Docker Hub -- https://docs.docker.com/docker-for-windows/ins

Device certificate

Hi all,

     I want to know, what device certificate is for and what it does?

Thanks !!!

"source user" empty in monitor log

I'm looking at an old version 7 PA3000 which uses a user-id agent to map users (active directory) to IP addresses.

When i log onto the firewall CLI  a "show user ip-user-mapping-mp all" command returns what looks to be a valid list of user mappings.