This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About cogbu
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About cogbu
05-31-2023
6Posts
0Likes
0Solutions
May 31, 2023Last Visited
User
Activity
User
Profile
Latest posts by cogbu
| Subject | Views | Posted |
|---|---|---|
| 591 | 03-28-2023 09:20 AM | |
| 365 | 12-15-2022 02:44 AM | |
| 773 | 12-05-2022 09:33 AM | |
| 774 | 12-05-2022 09:31 AM | |
| 879 | 12-05-2022 02:30 AM |
User Badges
Community Statistics
| Member Since | 11-10-2022 01:38 AM |
| Date Last Visited | 05-31-2023 06:06 PM |
| Posts | 6 |
03-28-2023
09:20 AM
3 service connections are being advertised through the 10.0.0.0/8 network via EBGP from data centers. I noticed that traffic from the RN-SPN loopback addresses is all reaching the on-prem environment (10.0.0.0/8) via the same service connection when we'd expect IBGP in Prisma to send traffic to on-prem networks via the nearest service connection. The traffic in question is RN-SPN user-id client connections to one of the user-id collectors that are situated in the Amsterdam data center. there are three SCs, one in US, EMEA, and APAC. But user-id client traffic from our RN-SPNs is all reaching our on-prem networks via the SC in APAC. No matter if the RN-SPN is located in LATAM, for example. I would expect to see RN-SPNs located in LATAM and NAM to reach our on-prem environment via our US-based SC and all EMEA RN-SPNs to go via the EMEA SC. But the user-id traffic from all RN-SPNs is pushed down from Prisma to on-prem via the APAC SC.
set up is using hot potato routing
Is this expected when all three SCs are operational?
... View more
12-15-2022
02:44 AM
Thank you for your suggestions.
in this case, It was related to plist permissions on Mac laptops. When the user tried to save the additional portal address, he didn't have the permissions for this to be saved to the relevant plist.
thank you!
... View more
12-05-2022
09:33 AM
A separate agent could also be considered.
They can type the portal address in, but when they click on Save, it does not save! This works OK on Windows laptops. Both Mac & Windows laptops connect to the same Prisma Access gateway and use the same App Settings profile. But this does not work for Mac laptops and the user does not want to use Plist.
... View more
12-05-2022
09:31 AM
They can type the portal address in, but when they click on Save, it does not save! This works OK on Windows laptops. Both Mac & Windows laptops connect to the same Prisma Access gateway and use the same App Settings profile. But this does not work for Mac laptops.and user does not want to use Plist.
... View more
12-05-2022
02:30 AM
is there another way to add a second portal address to GlobalProtect (v5.2.12-26) on Mac, as I do not want to use a plist to add a second portal address to GlobalProtect.I want to be able to add the portal address via GlobalProtect?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
05-31-2023
06:06 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks