Recommended User-ID settings

I need some help understanding the recommended settings for Pan-OS agentless User-ID.

First, here are my current enabled settings.

Server Monitor tab:  I have "Enable Security Log" checked.   Server log monitor frequency is 20, server session read fre

Client routed requesting last config in the middle of a commit/validate

i am getting following error while committing config to vm-50

Client routed requesting last config in the middle of a commit/validate. Aborting current commit/validate.
Commit failed

Global protect-DNS

Good afternoon/morning/evening everyone, 

I have an interesting one:I have a group of offshore developers and I thought about setting up a few access routes, doing split tunneling, however the problem is that my DNS being pushed for the agent is my DN

TS Agent not working for Windows File Explorer

Hi!

We found out, that it is not possible to track the user when he starts a Windows-File-Explorer via Citrix. Source-Port is used from the System-Context and not from the User-Context.

This behaivour is confirmed by Palo Alto, and it seems to be simi

Need the default password for Minemeld OVA deployment

I need the default password for Minemeld OVA deployment. I tried admin > minemeld and it did not work. Below is the OVA file i used for deployment.

trusty-server-cloudimg-amd64.ova

EDL list used in policy has no valid entries

Hi Community.

I have configured PA to fetch EDL of type IP addresses from EDL link "https://panwdbl.appspot.com/lists/ettor.txt" for blocking tor. 

I am able to see that the list is getting populated. But occasionally I am getting below warning while c

Where do I turn this off?

 Getting a warning every time I hit okay on an interface that I already know has management enabled is irritating. Where do I turn this pointless warning off in the settings?

Push Public IP's down via Global Protect

I have a possible need to push some of my public IP's down through my Global Protect clients.

Meaning an associate at home will hit my public IP via GlobalProtect and not from the Internet side. 

Can this be done... Or is it a bad idea in Palo Alto L

GlobalProtect linux surive reboot

I'm trying to get the linux client to always connect. Manually running a shell script to check if globalprotect is running and then connecting again works. But if I run this same script with @reboot from crontab -e it never connects, until I actually

Network slowness after changing the fw

Hi,

We have change a PA3020 devices cluster, with a PA3220 cluster. After changing them we are having slowness issues in the network.

After doing some troubleshooting we have seen that the issue is with SMB and also with the Internet connection. If w

Connections Per Second Per host?

Has anyone found a way to see a hosts generated connections per second? In other words we want to hone in on a specific host and see the CPS being generated in either a live or post event.

All I have found so far is global cps (show session info)

Tha