Global Protect Pre-Log on set up issues

Hi all,

We are attempting to test global protect with pre-log on in our network and have a number of issues and I was wondering if we might be setting it up incorrectly.

The type of set up we require is with windows machines that log on to global prote

Source User in Monitoring tab same time not viewed

This my issue !!!

During the snapshot same time the source user is not capture by PA

and for this issue the internet for specific user is disconnected

after 5 min the connection start again and the source user is showing 

any idea about this problem

how to check wether the firewall is using local disk or remote disk

LDAP APP

We have a rule based on LDAP . However after enabling SLDAP on server end, Palos don't identify it as LDAP rather they identify it as SSL based traffic . what is the ideal way of defining the rule for it now 


1. To define a rule above with Application

Output node prototype that allows to specify file type (extension)

We have product in place that requires the indicators to be in a text file and verifies if the file type extension is ".txt" ( --> e.g.  Pulling from https://ransomwaretracker.abuse.ch/downloads/CW_C2_URLBL.txt  diretly works but doesn't when pulling

Minemeld Error pulling O365 IP lists

I just stood up my Minemeld instance, was able to get it configured and verified it is pulling data from the default miners.  When following the steps to secure O365, I am getting an error with the miner picking up the data.  It constantly times out.

Cannot upgrade Minemeld

After reading PAN-SA-2019-00015– Cross Site Scripting (XSS) in MineMeld, I need to upgrade to version 0.9.62 but this is what I get:

ubuntu@sfovp-minemeld:~$ sudo /usr/sbin/minemeld-auto-update 
2019-06-28 16:45:57,709 INFO:0.9.11 Current status: 
20

SSL Inbound Decryption with a web proxy doing SSL Forward Proxy!

Hey girls/guys. My clients on the internal network, talk to a web proxy on the internet that performs SSL forway proxy. This traffic traverses the Palo Alto firewall - we would like the Palo Alto to see inside this traffic for threats,etc. Note: The

Looking for a keyword report

Hi Everyone,

I would like to create a report that sends me a email either straaight away or on a schedule, that when a user performs a search for a keyword i.e suicide I am alerted.

I workout how to create a report if the url contains a keyword, howev

packet size

Hi,

How the packet size  impact throughput .

Why do we require higher throughput when the packet size is small. 

How do we identify the packet size during the poc time ?

which service will be using the smaller packet size ?

Thanks

Internal Gateway not working

I'm trying to create an internal gateway to be able to capture User ID fully and start creating User ID based rules.  I created the dns records and put the gateway on a loopback interface on the firewall that is in the internal trusted zone.  I have

Authentication with LDAP server failed because received empty DN for user

Hello community,

I have an issue and maybe you know the reason. Here the situation:

Trying to create an authentication profile to authenticate with active directory but it´s not working.

When testing the profile with "test authentication ... " command

Recommended Version

Good Morning:

What is the recommended version for the Palo Alto 3050 series firewalls?  We are currently running 8.1.8

What are your thoughts on 9.0.2-h4?  Are there any problems with it, or should we more likely than not be good to go?