General Topics

DMZ, inside, outside - is it simple thing?

Hi there.

I have a PA-200.

Internal net is 192.168.0.0/24 eth1/2 , inside L3 interface  (default gw) -  192.168.0.254

One external ip address is using for outside inteface, eth1/1.

For connection to Internet I typically use pair inside-outside with:

1. N

Unable to reach GP Portal while on internal network

Hi All,

I was working with a site that has a PA firewall with a GP Portal and Gateway.  Some time ago, I had an issue where my users couldn't upgrade their globalprotect version while in the office. I was able to resolve this issue by creating a No N

Inability to Download GlobalProtect Client from Firewall

Dual Isp - Two webserver

Hi all,

i have a problem, maybe stupid for all of you, but i can't understand how to configure my pan-220.

I had only one isp and all it's ok (internet, webserver, 2 vlans, etc).

Now i have another ISP and, if is possibile, i need to publish a web serv

Multiple GlobalProtect Clients Behind The Same NAT Firewall

My wife and I are working from home during this COVID-19 situation.  We are both using GlobalProtect clients and are unable to have our tunnels up at the same time.  I can't see where this is an IPSEC issue via packet captures.  What am I missing?  L

SSL Decryption severe throughput impact

Hi

EDIT2: Please see follow up post below

EDIT: One open ticket is being investigated by TAC escalation as a possible known issue. I will update again as I know more.

In the last month 3 different customers came to me with the same issue - when SSL De

GLobalProtect Portal not found

I can get to the GlobalProtect portal on the PA firewall from outside and login and download GlobalProtect client.  However, after installing the client and try to connect, it says "Portal not found"

Any ideas?

Client is joined to domain, it did not

downtime for migration from MPLS to VPN with BGP with bgp routing

Hello community!

I have currently two sites connected through MPLS and I plan to configure a VPN with bgp routing to migrate traffic.

I am calculating the downtime that may require the migration from MPLS with static routing to the VPN with bgp routi

Email Notification Alerts for VPN connections.

Team,

We have started WFH facility for all of our users.

We have deployed GP portal and client to connect corporate network.

As per security requirements,We would like to receive the email notifications when the user connected to vpn client.

Can any on

Can't find the correct XML API path for excluding network ranges from GlobalProtect gateways

I'm having some troubles locating the correct XML API path in order to add/remove network ranges in a Global Protect gateway through a Panorama template.

Any advice on what is the best way to locate tricky paths like this one? So far no issues with a

Trying to find a method to prevent GlobalProtect logs from forwarding to our SIEM.

I am trying to find the correct configuration to prevent or exclude globalprotect logs from forwarding to our SIEM.

I have filtered the type of event "globalprotect" but dont seem to be able to configure this as a filter in my log forwarding on my ap