Global Protect Custom Setup

Hi Guys 

I have 5 separate GP Captive Portals and I want to make a custom setup for all of them separately. I will deploy them separately from the network.

Can we change the global protect msi package?

I heard it can be done from Expedition, is it

PA-7000 global routing resources

Hi,

We have a PA-7000 which is approaching a global routing resource usage of 32000 IPv4 routes. We do not use IPv6 at all so is it possible to re-allocate the 32000 routes set aside for IPv6 to the IPv4 table?

Thanks.

Paul.

Decryption: Client and decrypt profile version mismatch

Hi folks,

Have been seeing a lot of "'Client and decrypt profile version mismatch. Supported client version bitmask: 0x08. Supported decrypt profile version bitmask: 0x60. ' errors in the log lately. This article:

https://docs.paloaltonetworks.com/

Upcoming November 18, 2024 Deadline for User-ID and Terminal Server (TS) Agent Certificate Expiration

we have PA-3250 running PAN-OS 10.1.10-h1, please advise that User-ID and Terminal Server (TS) Agent Certificate Expiration will affect our services ? or  should i need to upgrade firewall which version?

The NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificate expiration

The NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificates will expire what is the  action needed(PAN-OS 11.1)

Failed to Validate Client Certificate" Error with User ID Agent

Hi Community,

We’re encountering an issue with our Windows-based User ID Agent installed on the server. Specifically, we're receiving the error message: "Failed to validate client certificate: No connection found."

Here’s what we’ve tried so far to r

TS-agent integration with User-id agent

Hello Community,

Can we integrate Palo Alto Terminal server agent with Palo alto User-id Agent without the terminal server agent (TS-agent) being integrated with the firewall directly?

Thanks in advance for your help

PANXAPI automated adding and removing of users and their records such as ip-address and so on

Hi everyone,

Is automated adding and removing users and users information in PA is possible uisng panxapi.py

UserID certificat expiration 18 November

For these devices in version 11.03h2 and using the users-id functionality
Panorama VM
PA 400
PA 1450
VM series 

Regarding the expiration of the user-id certificate on November 18, 2024
Is the PAN-OS version impacted?

Thank you

test

This is a test mail message

Flood protection (SYN) blocking/failing file downloads

Hopefully someone can make some sense as I can't find it. Still a little new to PA, though, but this is something I really don't get it.

If I enable Zone Protection - Flood Protection (SYN) and choose "Syn Cookies" or "Random Early Drop" on internal a

HA pair not syncing after SSL cert change

Hi there folks,

I'm trying to troubleshoot an issue with 2 firewalls where we uploaded the same SSL cert in both FWs and now they are not syncing.

Our troubleshooting efforts have come to the following:
- Reboot management server on both firewalls

Alert for appid queue overflows

We've been facing an issue with discards due to the app-id queue overflowing - counter "appid_exceed_pkt_limit_post".

I've been trying to either have the firewall send an SNMP trap when the counter increments OR have the alert "bubble-up" to the sy

Errors and commit warnings after 11.1.2-h3 upgrade

Hi,

If anyone could shed some light on the issue below, it would be greatly appreciated. Since upgrading my PA-440 to 11.1.2-h3 (preferred version), I am seeing the following two issues:

1. Every 5 minutes, there is a system log error:
Failed to perfo