RDP over VPN login only works after 2nd time?

I've configured and established succesfully a GlobalProtect VPN connection to my firewall (PA-3020). I want to create a RDP session to a server,I login to the GlobalProtect portal on my Windows 10 client and start mstsc. The first time I connect to t

Data-Filtering ALLOW

I am using PAN-OS 7.1.

I have figured out how to use basic data-filtering to block traffic with certain patterns in the payload, but I want to do the opposite. I want to configure a rule that will only ALLOW packets with a certain pattern, and automa

interface to interface connevtivity not working

hello - apologies in advance but im a newbie on Palo Altos - come from working on Check Points and Junipers and am now here tasked to set up a palo alto.  I've got my network working to where all the vlans hanging off of the PAN can ping it and it ca

Google Search

Hi

Anyone have any tips or tricks around forcing a particular country for Google search? Currently our IP address is misregistered in the Google database and we are being redirected to a foreign location. 

Thanks

"IP Tag" Log

Does anyone know what the "IP Tag" log is exactly used for? I know its related to dynamic address objects but what is the log used for?

Recommended PANOS version

Hi Guys,

I would like to know if there's any resources that provide information about what recommended versions of PANOS to be upgraded to or from? Also, what caveats one might face during the upgrade process?

Thank you,

Dennis

Layer 2 v. V-Wire

Anybody think of a situation where I would prefer a layer 2 connection over a vwire in a basic setup? i.e. [users]--[core switch]--[PA]--[router]

Right now I have:

([switch] --VW--[PA]--VW--[router])x4

Moving (becuase of lack of PA support for LACP L

Skype on PAN 8.0

Hi 

Has anyone had issue with Skype on PAN 8? This week we needed to bypass decryption of *.skype.com to get Skype to work on the Apple iOS Skype app (consumer Skype). Our setup inspects all ssl traffic apart from the finance /banking / health catego

Panorama - search and replace?

I'm kind of new to PaloAlto firewalls and I am looking for guidance on how to help with a little situation. As part of our migration, we had to create a bunch of security-zones that parallel what is on the system already. It was a cludgy, but functio

Failover (Active, Standby) 2 WAN Tunnel IPSEC

Hi All Expert,

I have a small question to ask you.
I have plan to use PA for this semester and try to find what PA can do.

I have more than 10 Partners dial Site-to-Site VPN with me.
One of 10 Partners have connection issue with my primary link, so PA wi

Change PAN Education Email Address

Hi All

My current work email address is used to log in to support.paloaltonetworks.com (super user, can add/remove users, see all our assets etc). It is also linked (not sure how) to my PAN Education login/transcript via SSO. 

I will be leaving my cu

PAN for NSX 6.3 and vSphere 6.5

Does anyone know if NSX 6.3 and vSphere 6.3 are officially supported for PAN yet? I looked at the release notes for 7.0 and 7.1 and they are both stating vsphere 5.5/6.0 and NSX 6.2. I have a POC lab with NSX 6.3 and vSphere 6.5 that i was looking to