global-protect client can't connect

Hi Team,

I am stuck in a situation. Whenever GP-client tries connecting to Firewall, it is stuck in between and then disconnects.

1. Client is able to connect to portal and download certificate.

2. I can see when it gets disconnects, i.e discovering n

HA in AWS deployment error message

Greetings,

I am deploying a pair of VM Series Palo Alto's in AWS.  Pretty much have a handle on the set up for HA.  In AWS eth0 is the management interface and is provided by DHCP.  After setting up for HA and committing the config I get the followin

Same IP can use in Static NAT and Dynamic NAT for Source NATing?

HI ,

I would like to Use one Public IP for Static NAT, but the Same Public IP is used in our Dynamic NAT pool with Dynamic ports,

my question is, if i place my Static NAT, whether the Same Public IP will use in Dynamic NAT Too? 

Gaming PCs and Consoles with DIPP NAT

Hi all,

I've been researching this for a while now and I've also opened a case on the issue.  Basically we just moved off of our Cisco ASA platform and on to our Palo Alto and I've run into a snag with gaming devices.  We're a university with quite a

Setting up dual authentication or single authentication based on the user group in global protect

Hi All,

We have the requirement where we have to setup dual authentication for some set (Group) of  user and single authentication for remaining global protect user. Is this duable? if yes, please provide info.

Note : We have the single gateway.

Regar

How to setup connection to multiple customers using Global Protect VPN Client

I have 5 different Customers that use Global Protect for VPN access.

Is there a way to have multiple settings files, or multiple instance of the Global Protect VPN client installed.

Did I miss something that would allow me to select from multiple Cust

OSPF with HA HA virtual ip

Hi

So I have an interesting situation

active active setup loopback.2 setup with a failover ip.

How do I add the ip to OSPF, because 1 interface will not have a IP address, so comitting it complains

Frustration with Panorama

Hi

So I am trying to use templates with panorama.  I have 3 devices. and I have a based template - standrard message and other things.

One of thos things is Authentication profiles, I have a standrad one that points to some LDAP servers.

But I am try

Whitelist channel in youtube

Is it possible to whitelist a youtube channel when youtube is blocked by policy?

Blocking YouTube channel - looking for working solution

Hi

I'm trying to block all YouTube channels and allow to pass only few of them.

For first look it should be easy, one rule for passing allowed channels and second rule for blocking all other channels.

But it doesn't work .

Youtube of course use URL to op

Youtube API Integration

Suggestion here to create a miner for Youtube using their API.  This would allow whitelisting or blacklisting a specific channel and all associated resources.  

Eg:

You can identify each channel based on URL, but not the videos as these have thei

Threat Alerts

I have configured Threat alerts to be emailed. This is working, however I'm getting information level alerts. I have setup a filter to only mail critical or high. I built this filter under objects/log forwarding, then log type threat. Is this the cor