GlobalProtect issue: DNS resolved with Public-IP instead of Private-IP

Hello,

We have an URL (for exp. sharepoint.mydonain.com) directly reachable on our internal network, with a Private-IP, but also reachable from the internet, with a Public-IP (of course, the public-IP is not reachable from the internal network  ).
It

Wrong HIP match

Hi team

Hope so you  all are doing great.

We are in the phase of implementing compliance checks based on HIP checks.

Before that we have created multiple HIP objects/profiles to observe our end users asset compliance and now we have asked our IT team t

Portable router w/GlobalProtect client in firmware?

My company has been greatly affected by the pandemic, we went from running over a dozen call centers to almost completely WFH.

An issue we have been experiencing is that our own operations staff refuse to send equipment from terminated coordinators b

Windows parche - KB5009543 - KB5009566 Global Protect

Hello to every one

Windows recently released parch KB5009543 - KB5009566, I understad thar this update affects some vpn sercices, and I would like to know if this parch has any affect on global protect

Thanks

Max GP Users showing 250 in PA440

Hi Team,

We are able to see only 250 max users in PA 440.

But as per Palo Alto The PA440 box will support upto 1000 GP Users. Also we are seeing max user limit reached error in GP logs.

GlobalProtect still failing over windows account

Hello Bros'

               few months ago I had an issue with the GlobalProtect and employees working from home and that was.

all employees log-in to vpn globalprotect via their domain account mydomain\myusername.

we had issues regarding the sso in the

macOS Big Sur 11.6.2 - Global Protect 5.2.8-23 - Connected but no internet coming through

Hello all,

I received from work a MacBook Pro with macOS Big Sur 11.6.2, I've installed the GlobalProtect 5.2.8-23 which is the only one that I had access to, and it seems like whenever I connect the GP, the connection is successful but there is no In

connection setting option is applicable if tunnel is not created in internal GW ?

We have created internal gateway and tunnel is not configured in same.

Below setting is applicable for machines connected to internal gateway ?

Login lifetime , inactivity logout and disconnect on idle setting is applicable for them ? also authentica

Prisma Gateway IP conflict

Hi everyone, hope someone can help with this query.

We've recently rolled out Global Protect to our users and all is working fine. General feedback, compared to the previous Checkpoint VPN connectivity, has been very positive.

One of our users raised

While using Citrix VDI, local Machine services(teams and outlook and other services) are getting disconnected after 10 to 15 minutes..

While using Citrix VDI, local Machine services(teams and outlook and other services) are getting disconnected after 10 to 15 minutes . But, if we stop Global Protect everything is working fine. 

Switch From Self-Signed Certificate to CA Signed on Globaprotect Fails

Hi,

Our users were running for some time using a self-sgined certificate with few errors and issues.

I was trying to install a wildcard certificate to replace the one in use, but no matter what I do, I ended up with the error message "The network conne

Certificate issue

When try to VPN we get a can't verify server Identity. The CA Cert Expired, I try to renew it and still didn't work. Then I generated a new one Try use Global Protect as the issue like the old one. But wouldn't let me after installing the GW cert. Ne

host reachability require in internal host detection

We have enabled internal host detection in GP portal with "enforce users to connect GP" option to yes. There is no internal portal and internal gateway configured.

When user walk into office GP connecting as a internal.

We have set our DNS server ip in

Global Protect Windows pre logon connection issue

While on log on page in Windows 10 machine when click on network icon at the bottom to connect with Global Protect it get stuck with checking status icon and don't proceed further.

GlobalProtect 

GlobalProtect: Pre-logon Authentication