using HTTPS external dynamic lists

Dear All,

We are using the version 7.1 and would like to use HTTPS external dynamic lists.

But it doesn't seem to work. Is there any additiontal required config to enable this?

I believe it requires a username and password for list access from the ver

nat-t not enabled on vpn tunnel has impact on other tunnels

i just had a weird behavior. i have several ipsec tunnels for clients using the ncp secure entry client.

they all have tunnels configured with certificates and a dynamic peer ip. yesterday i created two new tunnels but forgot to check the nat-t checkb

Normal behavior of LACP in passive/active HA setup.

Hi,

I would just like to verify the normal behavior of LACP in an Active/Passive HA setting.

Currently we have a pair of PA-3060 running 6.1.10 in active/passive. Both devices have LACP bundles towards a Cisco router.

On the active firewall the LACP n

Timeout value of user-ID log

We are using ldap authentication and globalprotect.

In the above picture, the timeout value continues to be 2592000 and 0

time out 2952000 and 0 , what does that mean?

Why does it look like above?

Please let me know.

MFA with Okta Failure - "{"res":"FAIL","msg":"Couldn't resolve host name"}"

I am testing MFA with Okta. I have noticed that the firewall. I have configured everything according to one of the videos Palo Alto Networks videos on YouTube. The firewall captive portal redirection is hit and miss for http and https services. When

NAT and security policies

Hi all.  I am trying to setup a ADFS environment in our network.  The actual ADFS server is located in the internal LAN, and the ADFS Web Application proxy is reside in the DMZ; internal LAN and DMZ is in a different VLAN.  

The goal is to send user a

EDLs

Can we group EDLs?

Once the url is fetched and content is read by the firewall and later the url is deleted, does firewall keep the cache of contents?

can firewall detect redundant entries?

Manage client SSL VPN use

Hi PAN Community,

I work for a school and we have issues with student VPN use - specifically x-vpn, hotspot shield etc. We have rules in place that take care of the proxies and standard VPN applications and have SSL decryption and URL blocks in place

New VM-100 throws error at commit

Hi

We have imported a config from a PA500 into a newly installed VM-100 v8.1 (under vmware).  After having done some VLAN changes to interfaces, we suddenly started to get the below error message when committing:

Can someone point us in the correct d

MAC OS Decryption Issues

Hello All,

I was just curious if anyone has encountered issues with Apple Mac devices and SSL decryption? We have users that are unable to perform an Internet Recovery over the network, but when they are off the network it works for them. This has on