Reasons for Connections going to ssl decryption exclusion list

Need to know PA which reasons it consider to put session in ssl decryption exclusion list?

one I know is client cert authentication and cert pinning.

also if ssl handshake does not complete will PA put connection in exclusion list?

Feature Request : GlobalProtect Disable uninstall of agent from workstation

We need the ablity to disable the uninstall of the GlobalProtect agent from our corp laptops. As it is now our users can and will uninstall it.

Traps has this ablity but I cannot seem to find anywhere to secure GlobalProtect

GlobalProtect - How Are you Using?

We have had our Palo 3020 along with GlobalProtect for about a year now, and we continue to struggle with all sorts of GP issues. I'm curious to know how are you all using GlobalProtect?

One Issue - Our strategy was to use GlobalProtect as an Always-

Safe Search Issue

Transparent safe search is not enforced for networks which are using the PA box for DNS proxy.

I have enabled Safe Search tick in URL filtering. Still no go.

We have enforced with local DNS servers and that is working. However the interfaces using PA

PA-850 - how to protect

Hi

If I wanted to protect a PA850 from unknown devices connecting.

so 1 port to the local ISP.

6 ports for laptops to directly connect.

How / what is the best way to make sure only pre defined laptops can connect.

Mac filtering ??? Think that is easily

PA850 10gb sfp+

Hi

After connecting sfp+ 10gb  - we are seeing high latency and high Packet Descriptors (almost 100)

any ideas?

We are using brand new Dell certified  DAC cables:

DLCAB-SFP+10Gb

Configuration settings for Syslog forwarding in Palo Alto UTM

Hi Team,

We have integrated Palo Alto UTM v8.1 with LogRhythm. We have enabled syslog on UTM and we are receiving logs on LogRhythm.

The issue is not all the fields are getting captured in the logs (we verified this in raw logs received at LogRhythm)

User Activity report not showing full activity

Hi Team, 

User Activity report only shows detailed web browsing activity for few days (3-4) when report is generated for longer time frame e.g 7 days or 30 days or custom time frame. root partition is at 87% and /opt/panlogs at 71%.

Any suggestions h

User-ID using internal global protect and Azure Active Directory

Hi all,

I've setup SAML SSO based authentication to global protect with Azure Active Directory. I'm wondering if i can take this a step further by using internal global protect gateways and using global protect for USER-ID? 

If i did this, how would

Active / Active NAT question

Hi

To all the A/A users. How have you / Or can you setup SNAT so that all traffic is SNAT'ed to 1 ip .

very basic example

Eth1 - connect to 1.2.3.0/24 - interface address is 1.2.3.2/24 & 1.2.3.3/24 (A/A)  1.2.3.1 arp load balanced

eth2 - connecs to 10