Global Protect : Authentication Profile based on source IP

Hi,

I would like to accomplish the following I have an always on VPN configured to use user-id password at logon.

When the user is on one of our remote sites with know public IP's I want to use only LDAP in all other situation when he is external I wan

External Dynamic List Issue OS 9.0.4

Dear Friend,

I have configured external dynamic list on PAN OS 9.0.4. When I add new URL selecting  IP List like http://panwdbl.appspot.com/lists/bruteforceblocker.txt  it's no't adding. Given the error as follows. But if i change it's to URL List it

outside minemeld server updated with inside minemeld server

Hi, 

We are deploying minemeld instances on clients, and we want to connect them to supply their minemeld with our indicators in a exposed minemeld instance(outside server). In addition, we also want to connect our outside server with the inside se

Regarding application traffic passing through the PA, the mobilephone cannot be accessed, and the co

Hi support，

     The situation is this. After the normal traffic passes through the PA, it goes to the nginx proxy server in the DMZ. The nginx then sends the traffic to the back-end server, and finally the server sends the traffic to the nginx proxy

Minemeld install on Ubuntu 18.04 issue

Hi All,

I have installed minemeld on Ubuntu 18.04 using Ansible Playbook. I have followed the instuctions on https://github.com/PaloAltoNetworks/minemeld-ansible#howto-on-ubuntu-1804 and rebooted the device but I get the Error Checking Credentials:

BI- DIRECTINAL NAT IN PALO ALTO

BI- DIRECTINAL NAT IN PALO ALTO

Go to Policies > NAT > Add

Create a NAT Rule:

1. Name the rule as per your convivence.
2. Select the source zone as LAN
3. Destination zone as WAN
4. Interface as the WAN (exit interface)
5. Service as the preferred port.
6. Source ip address

What apps and services are used for Meraki Cloud?

I can't seem to get the policy right for my Meraki APs to check in with the meraki cloud. I have allowed DNS, Ping, Meraki-cloud-controller using any port and allowed to *.meraki.com and *.opendns.com. Still see stuff hit my deny. Anyone know the cor

PA3020 fans always running at 100% speed?

First thing I noticed when I plugged this in was that it's very loud. Normally a device spins down the fans when it's at a cool temperature (which is pretty much all servers and appliances from the last 10 years).

So is there any way to change the fan

Disable Application Packet capture

I am having firewall managed using Panorama .

I am planning to disable application packet capture on specific device .

Can i do using panorama or need to do from individual firewall.

Thanks  

Tackling Google Stadia

Greetings all,

As I'm sure most are aware Google launched Stadia this week. Has anyone had any luck with blocking access to this service without hindering the use of other Google resources? I know this will be a temp fix due to eventually it will be

Layer 2 Interfaces together with Vlan Interfaces or Layer 3 Interfaces

Hello Community

I am struggling to choose one of the following two configurations. Which concept would you choose?

I have a trunk between the Paloalto (PA-5060) and a switch.
In the first variant I would configure the trunk interface on the paloalto a