Resolved! Multiple VPN Issue For FortiClient VPN & GlobalProtect VPN

Hi Support

Our Client is using use FortiClient VPN to connect to their servers and get internet access.

Also, they use GlobalProtect. When users who are using both the VPNs simultaneously lose internet access when enabling the GlobalProtect VPN.

I’m

Resolved! Security Policy using URLs?

Hello community.

Let's say I have an Atlassian Confluence site that needs to be accessed by a user (or multiple) - is it possible to specify down to the URL to only give the user access to a given set of pages?

Confluence permissions only allow me to

Resolved! Incoming Traffic from Palo Alto IP Address

I have a customer who asked about traffic which he saw on his Firewall.

I looked in firewall logs from several others customers and find the same IP address. It is always a HTTP oder HTTPS connection.

The traffic is coming from the 70.42.131.170. Acco

Resolved! IPS Signatures

Hello friends,

I have some signatures with fortigate names and I neet to know the equivalence in Palo Alto, by the CVE Palo Alto dont indentify it, could anyone help me?

web_app3: Narcissus.Image.Configuration.Remote.Command.Execution
CVE-2015-1579 CV

Resolved! PAN-OS 8.0.8 - use region in policy based fowarding rule

Hi community!

I would like to know, if it is possible to use a region-object as destination address in a Policy-based-forwarding-rule?

I found an articel from 2014 ("Policy Based Forwarding PBF based on destination country or self defined region?") th

Resolved! How to find log user-local database

Hi all, I would like to know it can be to find log file user-local on Palo Alto which I can just see useridd.log  and  useridd.log just see user-id and user-id agent but not user-local, please suggest me.

Thank You 

Resolved! FileBlocking only one way or ip ?

Hi, iam new to the PA product line and trying to figure out stuff in my pa220 before i release them to production.

In one of the scenarios presented; there was a request/question - is it possible to allow users to upload files to a share from one spe

Resolved! Agentless or User-ID Agent?

Hi,

In my environment, we have several domain controllers around the world across MPLS. In order for users to go out to the internet, they must have an AD account in a certain AD group. This seems to work just fine....but recently we've had a few issu

Resolved! How to block Geo IPs for some services?

Hi,

i have a ssh Service connected via the internet.

But i would like to filter a bit, because there comes often automatical scans from china IPs and so on.

The devices who connect to the port 22 have a dynamic ip so i cant set a static source.

But i kno

Resolved! Recover from Split Brain PAN OS 8.0.6 (PA3020)

Hi Community,

i have two PA3020 in an A/P HA deployment.

The cluster is virtualized with 2 VSYS - one for comany A and one for company B.

Between the companies, the coreswitches are linked with 20GBit. (a kind of dark fibre - 500 meters)

The 3020 HA se

Resolved! Global Protect VPN Unique ID's and one user allowed

Hello all,

I have a requirement for the following and short of any draconian methods, I'm hoping that the PA GP will be able to answer.  

These are PAN8.0.7 on 5520's in Active/Passive

I have a req to ensure that a user of GP is only allowed one GP se