General Topics

Resolved! 3rd Party VPN integration with Global Protect

Hi;

I envisage that these are only IPSEC 3rd Party solutions establishing a tunnel to the GP Gateway or the GP SAAS.

Kindly

Wasfi

Resolved! stdlib.localLogStash - How to get mined data into logstash

Hello Team,

I have set up few IP miners and then processing through a inbound aggregator and then giving it to Logstash output,

Names have been customised as I have cloned the aggregator and output from existing prototypes.

I am not seeing any indicato

Resolved! Packet Capture Filters via CLI using debug commands

I am trying to capture traffic between a specific source on the internal network to any destination on any zone.  I totally understand how to enable captures and turn it on & off but my capture seems to be colleting data but not anything that I can r

Resolved! Does using OSPF for redundnacy to 2 different standalone FW's work

Is anyone using OSPF to provide hardware/route failover with 2 different PA models?  (3020 and a 3220).  cannot afford HA 3220 now but would like to have failover to old box.  Palo is saying this is not a support design?  I thought OSPF is network 10

Resolved! Minimum allowed version of Global Protect

1st/ Can we check with HIP what version of GP they are using to connect.

2nd/ Can we force users/clients to be above a minimum version to be able to connect.

Resolved! Does Pre-logon for Global Protect use the Computer certificate as a client certificate?

Hi;

Prelogon Global Protect connection, does it use the Computer certificate as opposed to the user certificate to establish the tunnel? It seems that the only way to do it.

Kindly

Wasfi

Resolved! Global Protect User cant login to the portal

User can login to GlobalProtect Portal normally. However, clicking a link to download the GlobalProtect client fails with the following error: "Could not find file".

Note: Global Protect agent has already installed and activated on peers

Resolved! URL Filtering - How does it work exactly with Service interaction

So let me start here fundementally all I'm trying to do is something like "Computer Y can access MS updates and nothing else" and my three pointers were:

https://live.paloaltonetworks.com/t5/General-Topics/Security-Policy-with-Service-URL-category-co

Resolved! Commit not needed for operational mode

Need to verify when on operational mode 

PA>  

No commit is needed right?

IT was save the config automatically

Resolved! Panorama Device Static Routes

Hi,

I have a a requirement to configure alternative static routes on a Panorma instance other than the default route. Essentially the network my instance is deployed in is dual homed and needs to have routes for certain networks pointing a different

Resolved! how to unblock this sub-url?

I have a URL filtering list with *.github.com in custom blocklist. but I want to allow one specific sub-url https://github.com/abc .

added the sub-url to the custome allow list but didn't work. I'm assuming because of the url filtering order of prefer