Prisma’s DNS Proxy

Hi Guys,

I have a problem with DNS Proxy in Prisma.

it’s the same IP address as monitoring target (for on-prem to prisms IP-Sec tunnels).

Which tunnel is correct for DNS-Proxy traffic - Remote Network or Service Connection (or both)?

It does not

Prisma Access - Security Group pull

How do I train Prisma Access to only pull security group and not distribution group from AD?

Thanks,

Prisma SASE - MacOS & Global Protect

Hello All 

Pulling my hairdout here metaphorically . 

Having issues where Global Protect just drop connections to Prisma. 

I actually saw this first hand this morning. 

I am running a MacOs 13.6.1 on an M1 with GP version 6.2.1.

Was a general i

Prisma Access Global Protect GWs integration with On-Prem Portal/GWs

Hello,

How is possible to integrate GP gateways, we have design that on each data center there is gateway and on main DC portal and gateway, recemtly we deployed small Prisma Access deployemnt just connected one branch office. Currently there are two

How to block Google Docs but single Spreadsheets link on Prisma Access Cloud-Managed

Hi!

We are using Prisma Access Cloud-Managed, we have "Online-Storage-and-Backup" category blocked using "URL Access Management Profile", this makes Google Docs to be blocked.

Now I need to give access to a user only to a single link of Google Do

EXCLUDE REGIONS TO THE PORTAL | PRISMA ACCESS

Good afternoon,
I have prisma access, I want to exclude regions so they can't connect to the portal.
For now, make policies excluding regions for trust (prisma) to trust (LAN) and it works. What I want is to not be able to connect to the portal.

Please

Prisma Access location and Compute location

Hello Everyone,

I have some questions about Prisma Access locations (RN-SPN vs MU-SPN), but I was unable to discover the answers in the documents that were provided. It would be wonderful if you could clarify something for me:

1. Difference betwe

VPN PC - PRISMA - Fortinet

Hello,
I currently have an infra with customers who set up VPNs from their PC to Prisma, then a VPN between PRISMA and our PaloAlto.
I'd like to be able to set up a VPN between PRISMA and a Fortinet FireWall.
PC to Primas, then Prisma to Fortinet (back

Prisma Access Global Protect

Hello Everyone,

If global protect is configured as an Always ON method and it keeps failing for whatever reason, what would happen? will it allow local network access or internet access or block anything until VPN gets established?

Is there any d

Decryption Profile - what does not selecting an auth algorithm actually do

Hello,

Our internal security team is suggesting we disable SHA1 as an authentication algorithm for our decryption profile we attach to our prisma access users. My question is, if I do uncheck that box under Objects > decryption > decryption profile >

Response Page Without SSL decryption on Prisma Access

Hello,

In order for the user to see a reponse page when browsing a blocked URL category in prisma access I guess you need to decrypt the traffic for the blocked categories.

On my own firewalls I can issue the following command:

How to Serve a URL R

Is there traffic interruption when you add corporate subnets to a service connector

Hello,

We have a service connector from Prisma to one of our VM-NGFW's in AWS. We are looking to add another corporate subnet to that service connection so staff connected to Prisma, will be able to access that subnet via GlobalProtect\Prisma.

My q

Prisma Access / On-Prem FW Scenarios

I'm beginning to pursue Prisma Access and just wanted to make sure my understanding is correct.  Currently, my sites (HQ/DC/Branch) in various parts of the world have PA firewalls.  For GP, users connect to a PA FW in their region, all traffic is bac