Internal network to GlobalProtect client communication problem

Hi,

I have an issue with traffic from internal to GlobalProtect clients that is not working.

Traffic from GP clients to internal works fine.

I have set up a security rule to allow any traffic from Internal => GP-VPN

It seems I am missing a rout

Panoram XML API - remove users from Global Protect

I am trying to figure out how to remove users from Global Protect using Panorama API.  This is needed for both users connected to Prisma Access and to local firewalls.  

Logout_mobile_user from Prisma Access:

For Prisma Access, I think I know what

Global Protect not working MacOS with Xfinity

Hello,

I have a few users who have MacOS where GP works everywhere else except on their home Xfinity network, including me on my own Mac when I didn't believe them at first. From what I can tell from the small amount of users, it only affects newer

what Windows PKI certificate template to use for pre-logon

I am testing pre-logon and have a question about what certificate template to use.  I cloned the Computer template but didn't know if there was a recommended template to use.  Also, are there recommended settings to use for the template to be used fo

configuration profiles for the XDR macOS agents with Intune

How can we deploy/update XDR macOS agents with Intune ?

post connect vpn

Does running commands from the registry using post connect vpn only support .bat files or is powershell supported?

I am running PANOS v11 and GP v6.0.7

If its only .bat files that are supported here, can I call a PowerShell file from within the bat

A valid client certificate is required for authentication - PanOS:9.1.16-h3

Hello Team

We recently upgraded to 9.1.16-h3 on Dec 15th and we started having issues with Global Protect where users are not able to authenticate using the certificate. We have checked and made sure that the correct with its private key is present i

PAN OS 9.1.17 Global Protect Issues

I upgraded from PAN OS 9.1.14 to 9.1.17 on Dec 27, 2023

Ever since the upgrade, I have random users that cannot connect through VPN GP at the first time. Some users experience connect disconnect issues as well. Some users are working just fine.

W

GP VPN fail on iphone ios

Hi,

I face with issue GP VPN fail to login on iphone ios 15.8. The error show Portal login, error = The certificate for this server is invalid. You might be connecting to a server that is pretending to be “119.x.x.x” which could put your confidenti

Customer Support

very disappointed with Palo Alto services , customer service doesn't pickup the call and they doesn't care about the customer case. day by day services are going worst .

Global Protect firewall allowed rule

Hi,

I'm creating a firewall rule to allow TCP 443/UDP 4501 (Global Protect) to go through the firewall, and I want to know if I need to allow bidirectional for the UDP 4501?

Thank you,

GlobalProtect 6.1.0 for Linux Fedora 39

hi all,

Our EU is currently on GlobalProtect 6.1.0 on PA-5250 firewall, we just wondered if this GP 6.1 support Linux Fedora 39? I tried to find any legit resources that would mention this but couldnt find anything helpful. Would like to share the

How to validate user/endpoint is fetching which profile from GP Portal Agent configuration.

Hello Team, 

I have configured multiple agent profiles in the GP Portal and I want to verify which agent profile is currently being fetched by individual user, How do i verify that from the firewall or endpoint?

Context: I have profile 1 which has