Global Protect, separate ip pools for different users.

Looking for a little guidance.  

I'd like to make separate ip pools for different user groups when using global protect, I'm pretty sure this is possible.  It is the trying this back to an AD user group where I am stuck.  Anyone have an example?

th

Layer 3 Sub-Interface Question

All,

  I have recently set up a test lab with a PA440. In the lab I have created a WAN and LAN zone from two different physical interfaces.

  In addition, I have created a sub-Interface from the physical ethernet port 1/3. This is what the ethernet p

QOS for SIP Questions

I have tried configuring QOS for SIP and Teams calling but it doesn't seem to be working right. I can see the policy is detecting the applications correctly and assigning it to class 1 but it isn't prioritizing the traffic. My SBC is in the DMZ which

Youtube in QoS

Hi everyone!
I want to use youtube with QoS.
I want to limit class2 to 50mb.
But the actual data amount that works is 140mb.
Did I set it wrong?

If you have any good ideas, please let me know.

Factory reset PA-3060 firewall. Can't get into maintenance mode

I don't have the username  and password for the device. Trying to factory reset the firewall. When I see the promnt type "maint", I type maint, but the firewall just continues through the boot process. Can someone let me know what I'm doing wrong.

PCNSE - Instructor-Led Courses - study guide

Dear all,
I noticed that when accessing the Instructor-Led Courses section, only tests are available, but the actual courses seem to be missing. Could you please assist me in locating the full courses or provide guidance on where they can be accessed?

PA-VM sysd_construct_sync_importer

We got a customer that runs into this issue recently, it's a known issue (not public) for versions 11.0.0, 10.2.3, 10.2.2-h1 (and also to us 10.2.3-h2, 10.2.2-2).

When you run into this, means that there's a hardware issue, please go to TAC in order

Website is not secure, certificate is expired.

Hi everyone, 

Recently, I've seen an issue where if we use a computer that has its traffic routed through the PAN NGFW, we will get an error message from the website saying "Your connection is not private" with an error code: NET::ERR_CERT_COMMON_NAM

NAC Causing Delayed Compliance Check and Session Blocking

Hi Team,

• When a new user connects to the network, NAC takes approximately 10 minutes to identify the user and check compliance status.
• If the user is deemed non-compliant after the check, all new sessions are blocked by the firewall, as expected

Palo Alto DAC Cable

Hi team, 

I aware that Palo Alto have 10G, 40G and 100G DAC cable/AOC cable.

May I check if Palo has 25G cable? If yes, can help provide the SKU?

Thank you in advance!

Change IP MGT Firewall conect to Panorama

Hello, good afternoon everyone, thank you very much for your time, help and support.

I have the following scenario:

1.- Panorama managing 6 firewalls
2.- Panorama version 9.1.6
3.- Firewall HA 9.1.6 (5250 - This will be used for configuration migration

Global Protect SSL VPN

Hello Team:
I have GP configured with an ssl_vpn certificate.
x.x.x.x:444
It works, but when I try to open it in the browser it doesn't work:
The policies have https service, and through port 444.
Any comments? Thanks
Regards.

#paloalto

Issue with Support Portal

Hello,

I have an issue with my support account.

It doesn't been used for a while and seems to have a right issue.

Could you please help me ?

Thank you.

Regards,

Romuald