GlobalProtect Client with Android 9 (pie)

Is PAN abondoning the GP mobile client on Android? The last update was a while ago, the UI is just horrid and it crashes under Android 9. Several reports of the issue have been made but all is quiet so far. Does anyone have any inside info? I was usi

FTPS connections are not working

Hi,

We have a inbound NAT for FTPS but the connections are not working. We can not see any deny in FWs.

We dont have decrypt SSL configured. I think it shouldnt be necessary, right?

Policy configures has "ssl" and "ftp" allowed. this is the ftp log:

W

SSL proxy allocation error

I had ssl decryption in place on PA_5020 and it seems like during peak times, my internal data traffic is reaching max ssl decryption session limit and those beyond the limit are shown as decrypt error and are sent un-decrypted. Is there any solution

IKE traffic recognised as unkown-udp since September 6th

Customer had an application based rule for VPN traffic. However since September 6th the traffic on UDP 500 is no longer recognised as IKE. Some VPNs stopped working, some still work even if they shouldn't really. Release notes of last 3 content updat

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications on a PA-220 ?

I have tried the Gmail Server - ASPMX.L.GOOGLE.COM and it is not working
Please provide a step by step example for how i can configure emai

GlobalProtect SSL VPN - Slow SMB Transfers

Hi.

First let me say that I have managed to get some improvement to transfer speeds by tweaking the MTU setting on the tunnel interface for the GP VPN.

When I first started my testing, if I copied a single large file ( a 400 MB ISO ) from a remote se

Notify message of upgrade in GlobalProtect

Is possible to notify an user with a message that the globaprotect client will be updated before the update?

Interconnect between layer 3 and layer 2 interface possible?

Is below configuration possible?

1. 1 layer3 interface act as gateway and DHCP

2. 1 layer2 interface interconnect to the layer3 interface above. The computer connected to this interface can reach the layer3 gateway and IP address receive from its DHCP

show system disk-space

Is this information still correct for 7.1.16 , I am trying to plan my upgrdae from 7.1.16 to some version of 8 and trying to make sure I have enough space on the disk to do it

/dev/md6             - PAN-OS Image repository.(Device/Software)

/dev/md2 

How was determine or verify after with application override bypass L7

Hi Expert ,

I would like to verify after config and traffic is match with Application Override Policy that it already bypass L7  how to check it via cli or gui so, I have understood about can check with show session id after filter application is alr

Shutdown Clustered/HA FWs

Is there any documentation on how to properly shutdown a clustered/HA FW pair and then restore connectivinty power verifying proper function once power is restored?

Dynamic TCP port APP query

Hi community, In a situation where there is a security policy allowing: SOURCE Source IP: any Source Zone: outside DESTINATION Destination IP: public IP 1.2.3.4 -> NAT'd to private IP 10.10.10.10 (servername1) (the security policy is using the post N