Resolved! Split tunnel greyed out

Hello,

We are using PANOS 8.1.7 and GP 4.1.8.

We have multi Vsys and one of our VSYS administrator account cannot access GP protect agent split tunnel setup.

It is greyed out.

Is this an account limit or something wrong?

Resolved! TS Agent no port mapping when using windows net use

Hey Guys

We have noticed a weird behaviour:

When I do a telnet to IP 1.1.1.1 Port 445 on our Terminal Server with the TS Agent installed, the associated Port Range will be used as expected and the source user-id will be mapped.

But when we do a net use

Resolved! Steps required to add separate Log collection and LC communication Interfaces

Currently we have Single Management Interface on 2 M500 acting as

Management Interface

Log collection

LC  Communication.

From Panorama M100  we have single interface doing all the above functions.

Need to know what are steps in order to separte the in

Resolved! Changing name of many Security policy from Cli

Is ther any way to change the name of all existing security policies from the cli at once?

Resolved! VPN IPSec gcm or cbc cypher types

When configuring VPN to a 3rd party vendor and you are given the required settings for IPsec profile as sha1 or sha256 only, however on the Palo Alto firewall we have the option to use cbc or gcm, e.g. aes-256-cbc and aes-256-gcm.

In the past I used t

Resolved! 3rd Party VPN integration with Global Protect

Hi;

I envisage that these are only IPSEC 3rd Party solutions establishing a tunnel to the GP Gateway or the GP SAAS.

Kindly

Wasfi

Resolved! stdlib.localLogStash - How to get mined data into logstash

Hello Team,

I have set up few IP miners and then processing through a inbound aggregator and then giving it to Logstash output,

Names have been customised as I have cloned the aggregator and output from existing prototypes.

I am not seeing any indicato

Resolved! Packet Capture Filters via CLI using debug commands

I am trying to capture traffic between a specific source on the internal network to any destination on any zone.  I totally understand how to enable captures and turn it on & off but my capture seems to be colleting data but not anything that I can r

Resolved! Does using OSPF for redundnacy to 2 different standalone FW's work

Is anyone using OSPF to provide hardware/route failover with 2 different PA models?  (3020 and a 3220).  cannot afford HA 3220 now but would like to have failover to old box.  Palo is saying this is not a support design?  I thought OSPF is network 10

Resolved! Minimum allowed version of Global Protect

1st/ Can we check with HIP what version of GP they are using to connect.

2nd/ Can we force users/clients to be above a minimum version to be able to connect.

Resolved! Does Pre-logon for Global Protect use the Computer certificate as a client certificate?

Hi;

Prelogon Global Protect connection, does it use the Computer certificate as opposed to the user certificate to establish the tunnel? It seems that the only way to do it.

Kindly

Wasfi

Resolved! Global Protect User cant login to the portal

User can login to GlobalProtect Portal normally. However, clicking a link to download the GlobalProtect client fails with the following error: "Could not find file".

Note: Global Protect agent has already installed and activated on peers