General Topics

Update to 8.0.6 appears to have broken IPSec tunnel connections

Since our PA updated we've had a problem with one IPSec Tunnel not routing correctly. It appears to relate to just one Proxy ID but I've checked all and they're exactly the same as the PFSense box we're connecting to. Everything was fine until the up

can we import duplicate Ccommon name certificate of diffrent vendon?

We already using sectigo cert for gp gateway *.example.com. We have purchased same wildcard certificate from reddit.

Sectigo certficate is going to expire before that we want to test GP gateway on new certificate signed by reddit.

We will configure GP

Query on DH group for IPSEC VPN

NSX-T east-west traffic integration sizing question.

Hi,

I have a question about using palo alto for east west traffic inspection in an NSX-T environment. 

There are 2 deployment models in a service cluster and per host model.

https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-th

Palo Alto hardware without license limits

Yes, I already know without license i don't get the following but i want know about like VPN, firewall rules and etc.. limits

1. Security profiles (Anti-Virus, Anti-Spyware, URL Filtering, Wildfire) will not work

2. Clientless GlobalProtect, HIP will n

Custom BlackList

I have a custom blacklist and when i try to import text files with URL it fail

anybody know what problem is can be?

Global Protect - Split Tunnel not Disabled

I am having an issue with both windows and Mac clients.

I have enabled the no direct access to local subnets option but I am still able to browse to my local router and I am getting reports of users being able to access local printers.

currently the ac

Applications are not opening properly from the Clientless VPN

We have configured a clientless application on PA. It s working fine it's taking to the application, Following the Home page and other contents are accessing but from there we not able to open few the popup menu tabs from the application.

Application

Clientless VPN not resolving URL domain names

I recently set up the Clientless VPN feature in PAN-OS 8.0 and I'm having problems with the domain names for the Clientless Apps not resolving. I added a DNS Proxy in the Clientless VPN section of the GlobalProtect Portal that is associated to the GP

Memory OID value for Palo alto device.

Dear All,

If you can help me with Memory OID value for Palo alto device. I have to enable monitoring for the device where these OID are used.

Thanks in advance

JAVA Webportal ist not completly working With Clientless SSL Webvpn

I have a problem with my PaloAlto Firewall 3020 Clientless SSL Webvpn.
, our JAVA Webportal ist not completly working.
Our clientless SSL Web Portal is running on PaloAlto Firewall 3020 with Version 9.7
It is comming the following Error.

"ClassNotFoundEx