GlobalProtect enforcer exceptions not staying in registry

We have GlobalProtect with "Enforce GlobalProtect" enabled and a set of IP and FQDN exclusions. Additionally, the captive portal exception timeout is configured to 900 seconds. However, we’ve encountered an issue when users are connected to GlobalPro

Need quote for Firewall PA 440

Need price for firewall PA-440

Palo alto type of license subscription

Hi,

May i know type of security subscription license module.

How we can define the requirement for inside office and outside network traffics.

Thanks

User-ID Redistribution Agent : Close Connection to Agent

I am getting high severity alerts for user id connection agent Failure - Redistribution Agent <Agent Name> (Vsys1):Close Connection to Agent. Would appreciate if anyone can help me understand the log to check if the issue occurred due to firewall or

Suggestion for a good model.

Hello Guys,

We wants to deploy 10 PaloAlto firewalls in our 10 multiple locations.

So pls suggest a good model which can capture all type of logs and having advance features.

And wants to deploy one centralised firewall which can control all location'

How to migrate PA 3220 config on PA 1410

We have 3220 appliance and we want to migrate configuration to new 1410 appliance. Please provide link for migration tool

Security policy not matching for CP authenticated LDAP users

Objective: Configure Captive portal for non-windows users to authenticate, but use AD credentials through LDAP authentication. 

Configuration performed.

1. LDAP profile, Group mapping settings, server monitoring. (test command authentication is  succe

Pangps service stop after system restart in windows 11.

Global Protect service not running after restart the machine. When i try to enable the pangps service i am getting Error 1053 error. I have done the below troubleshooting. This issue raises in Windows 11 only. 

1. Set delayed start

2. Changed option

Question on "default" VLAN Interface

This may be a stupid question, but is there a purpose for the default vlan Interface (named just "vlan") that gets created on network templates?  I have a couple of deployments that use vlan interfaces, but I noticed that the default vlan interface i

Logistics information PA-500 Series

Hello, I am looking for the following logistics information for PAN-PA-510, PAN-PA-510-OSS and PAN-PA-550-OSS:

PAN-OS 10.2.17 HA A/P - Mgt interface reported as duplicate IP of data interface

After installing PAN-OS 10.2.17 to a PA-440 HA A/P pair  ( to address - CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface . ) 'duplicate IP' system logs reported where the stated MAC address appears to be the fw m

Not able to log XFF (Actual Client IP) in PaloAlto Logs even when we enable XFF and URL filtering profile in Palo's

Issue Summary – XFF Not Logged on Palo Alto (Even With Decryption ON)

We are running a flow where AWS ALB inserts X-Forwarded-For (XFF) and the Palo Alto firewall performs SSL decryption + re-encryption:

Flow:

Client --> Internet --> AWS ALB (HTTPS) (