Is there a way to exclude mobile devices from the always on VPN?
I enabled always on and it worked great for computers but it threw our phones using GP into chaos.
Having the strangest issue on Ubuntu 24.04.1 with GP 6.2.1
Connection works about 75% of the time. Regularly I'm getting an issue where DNS fails to resolve over the VPN tunnel.
I've confirmed with wireshark that the DNS requests are being forwarded
...
Hello,
I have setup a HIP object\profile that does not allow a computer to connect if it does not belong to our domain and it is working as it should.
My question is if there is a way to exclude a device from this HIP check and it would be allowed to c
...
Is there a way to perform check / enforce endpoint to have a specific version of GP rules ?
Hello,
I configured prisma access with GP Portal + External gateway and pre-logon always-on with Enforced Global protect Connection for Network Access, and also enable Internal host detection and cookie authentication override on both portal/gatewa
...
Is there a way to setup an alert for when clients exhausted the Client IP pool or are close?
Both this: https://docs.paloaltonetworks.com/globalprotect/9-1/globalprotect-admin/host-information/block-device-access
and HELP indicate an DEVICE BLOCK LIST available for GlobalProtect. When in the FW GUI I should see it in the GlobalProtect menu.
...
Hi everyone,
I’ve been getting a lot failure logins for my GP gateway from a same host name ‘my laptop’ with different ip addresses.
Is there a way to block a host name to access GP gateway?
Thanks.
Hi All,
I have configured Azure with Global protect enterprise application for SAML and configured the Group claim attribute as "group -> user.group" which as 3 usergroups Sales, IT , and Developers.
And in the Palo alto firewall (10.2.8), SAML
...
Hi,
We have installed Global Protect 6.0 onto a Surface Pro X running ARM64 processor but when starting Global Protect it instantly says 'Count not connect to Global Protect service. make sure Global Protect service is running.
Have gone through
...
hi everyone,
I have GP configured for ipv4, it works (I also have both ipv4 and ipv6 addresses delivered via dynamic assignments from the isp for the internet link)
in the configuration if GP I use "none" under the IP assignments for ipv4 as I gues
...
Hello,
We upgraded our firewalls to 11.2.4-h1 to patch the critical vulnerability recently discovered.
We use Global Protect with AO VPN and enforce network connection.
A problem we are seeing this morning is when our Global Protect clients are
...
Hi,
I am trying to grant access for my users on my PA-220 to application through RDP Remoteapp windows funcionality from VPN Global Protect. I managed to make it work in any other zone but that one.
Current rule is set up to allow applications MS-RDP
...
Hi Support,
I am trying to configure Globalprotect with Azure Saml integration.
The authentication part is configured following the link ( https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008U48CAE).
Additionally usergrou
...
Hi,
I want to download the Globalprotect cleint but i cannot find it.
Usually i donwload it from the Customer Support Portal, under Updates / Software updates, but from somes days, i have nothing in that section.
Our portal login pages in our global
...
