user activity ACC -CLI

Dears

I want to know the IP of this user "None",as per to a below image, through CLI ...Can I do?

Please feedback with the command or the way to know who it is ?

thanks

commit status warning part II

Here is another interesting commit status dependency warning

"Rule 14 application dependency warning: Application ms-update requires ssl be allowed but ssl is denied in rule 15. " Why is an application in the rule above getting on a rule below it?

Source IP for SSL Forward Proxy in Virtual Wire Mode

Can someone tell me how to know/what would be the Source IP address for an SSL Tunnel Proxied from the PAN NGFW while running in Virtual Wire Mode ?

My topology is very simple:

User (Virtual Wire) ----> PAN ----> Internet

Does the Firewall initiate t

PA200 failed to discove rin SNMP server

Hi.

I have PA200 (PAN 7.0) device with snmpv2 enable but failed to discover in SNMP server.

When we did snmpwalk from server its giving message "No Such Object available on this agent at this OID".

Appreciate if some one can provide the exact cause of

S2S VPN between PA 3020 8.0 to Cisco ASA 9.x code.

First thing,

I know there are postings about this out on the web and community about this. The problem I'm having is everything out there is on old ASA code. 

I'm trying to understand the configuration on the PA. I have my tunnel interface configured,

commit status warning on rules that are working the way I want them too

I have a rule that has webex enabled but dones not have ssl enabled and i keep getting a warning on that rule when i commit that says "Applicaiton 'webex-desktop-sharing requires ssl be allowed? But I don't want to allow ssl, so how can I get rid of

Enforce Connection for Network Access

I want to see traffic over GP. In my understanding GP Portal configuration Enforce Connection for Network Access is Force networt traffic via Portal IP.  But it connected and not traffic registered under PA. 

ASA 5510 VPN

I want to replace a IKE1 VPN serviced by a ASA 5510 with a  IKE2 VPN serviced by the palo alto what i the best approach?

Cisco SFP+ Twinax Copper Cables to PA-5050

Hello.

Has anyone tried connecting Cisco SFP+ Twinax Copper Cables (sfp-h10gb-cu1m) to PA-5050 device? I've tried to find some info about it on PA KB but wasn't successful. Is there any document issued by PA listing all the supported 3rd party devices

Hub and Spoke IPsec VPN design with Dynamic Routing

Looking to properly setup Dynamic Routing over a hub and spoke IPsec VPN network. The hub will have 40-50 spokes.  The Hub is running a PA-820.  Spokes will be PA-220.  Voice and data traffic.  There will be minimal traffic between spokes.  My questi

Global protect users dont pass authentication

Hello all

we have PA in production.The problem is VPN users dont pass by certain authentication profile.The issue is that when we point user it is ok but when we point some group it fails to authenticate

we test through CLI and that is result

test auth