Hi guys, How do i know if traffic is going through my local network as i enabled split tunnel and excluded *.youtube.com and *.netflix.com.I attached the cli output of the session also. Thanks
Hi, My employer has recently changed their VPN and are now using Global Protect. I was given the installation software to install Global Protect version 5.2.2-4 onto my home PC (Windows 10). Windows specificationsEdition: Windows 10 ProVersion: 20H2OS Build: 19042.630 I installed the software and once I added my company's VPN port address to the...
Hello. I have a server that I use as a "bridge" that I use to keep a persistent VPN connection active to a restricted network, to extract report data. We were previously using the openconnect client for the bridge, but recently, the secure network changed to use GlobalProtect. When I tried to replace openclient with the linux GP client, somet...
Dear AllI have Palo alto FW use function VPN .So my customer would like to do policy for VPNlike User A VPN to Palo Fw just access to zone internalUser B VPN to Palo FW can access to zone DMZ onlyUser C VPN to Palo FW can access to All zone this time the all VPN User can access to all zone in FW . my customer need to change it thank you
So for about the last month (just before xmas) we seem to be having certificate errors for our wildcard cert. Its a wildcard purchased from instantSSL. (sectigo) when using it with global protect client. It works fine on windows machines. Just seems to be chromebooks and phones. When you go to connect it prints the error "Gateway XXX: The server...
Hi Team, We have noticed an issue that, in Host Information logs on Global Protect the GP Agent is not fetching the "Morphisec Unified threat prevention" Anti-Malware software that was installed on the Client Machine. Herewith, i have listed the Software version installed on the Firewall for both PAN OS and GP Version for your reference. Please...
We are stuck with Network Sign option not getting visible on Windows logon after installing GP Client ver 5.2.5.We expected the GP ver 5.2.x and above to create registry automatically as mentioned in following URL. Unfortunately , they are not getting created. https://docs.paloaltonetworks.com/globalprotect/10-0/globalprotect-admin/globalprotect...
Hello We need to test MS-Teams. hence I did a few tests with split DNS. The published manuals (e.g. https://live.paloaltonetworks.com/t5/general-articles/globalprotect-optimizing-office-365-traffic/ta-p/319669) are fine, as long as the VPN gateway is "near". In our case the user is located in South Africa, and the VPN gateway is in northern Euro...
Has anyone configured connect before logon .Would need steps to configure this .I have a few queries as well .Do we need pre-logon user agent config for this or no ? The registry values found in this document are not exact to what i see on windows .Any help is appreciated . I have added this registeryPanGPS.exe -registerplap Rest options are not...
Has anyone had any luck setting up MFA on the Palo Alto with Global Protect with Microsoft Azure MFA (Hybrid) I tried opening a ticket with the support team and they said they had no clue how to setup but could support it if broken and told me a "Sales" Engineer would reach out to me sometime that day. That was 4 business days ago. I have been ...
We have Global Protect configured at site A - HQ, and we use preferred IP assignment. All good here. We’re deploying Global Protect at site B. We intend to use both gateways for HA. Site A and B are connected. My question is - can we use preferred IPs for both gateways – over different subnets? Any clarification appreciated. Thanks.
Hi there, we are facing a weird situation with GlobalProtect pre-logon connections. We have some laptops with machine certificate only (they do not have user certificates deployed).We want them to connect using this machine certificate, as "pre-logon", so they got limited/specific access to some company resourcesThey are able to establish GP VPN...
Hi, Wondered what people's experience/advise is on the following. We have palo alto VM series in azure which we are using globalprotect on. At the moment I am NATing the globalprotect VLAN to the IP address of the firewall, but in doing this I am finding that the DNS log traffic from our DCs is limiting in that all of the requests are appearing ...
Hi there, I have a question on the correct use of internal host detection and internal/external gateway config. The behaviour I want to achieve is when a client is internal to the LAN GlobalProtect will detect this and not bring up the tunnel and pass all network traffic transparently out the LAN connection, as if it wasn’t there. When external,...
I'm switching our user over to the Always On VPN via the Portal App Config that auto connects the vpn and requires it for network access. The issue is I want to prevent my users from connecting via personal PC. I've set the Client Authentication to require User Credentials and Certificate. When I delete the certificate that I set up I get the w...
BPry
on:
MacOSX Tahoe 26.4.1 (25E253) / Global Protect 6.3.3: Network is unreachable
