I have (3) PA-500's, and the one thing I have noticed on all of them, is that it takes up to 10 min. to boot. It takes 15 min or longer if there is a new release being installed. What does the PA use for storage, and why does it take so long in thi
...
We have setup a general web browsing policy and users were being blocked from viewing github. We allowed github-base to the policy and commited it. They can now view github without any issues but every time we commit we recieve a warning "Applicati
...
Hi,
After suspending local device in HA FW, im getting error "cant able to connect to device"...Please help me in this.
Hi there,
I'm looking to setup a few site to site VPNs using a PA2020 at our HQ site with Draytek Vigor 2830n routers at the other end. We have fixed IP addresses on the other end so I don't need to worry about the issues with dynamic IPs.
I was wonde
...
Hello,
I am trying to setup a U turn NAT that runs so that any system trying to contact time.apple.com using the NTP protocol will be rerouted to an internal NTP server. We do not allow NTP out and iPhones and iPads ignore DHCP settings for the NTP
...
I have a customer installation with addresses and services defined in the Panorama as shared objects. On the other side, all rules (using those objects) are define as local policy on the firewall. When I import panorama config in migration tool I see
...
Shortly, after the APP-ID changes were implemented, I'm having problems with youtube. By default we disable general access to youtube. However, we do allow access to specific videos. When I attempt to connect to youtube.com using http, I get block
...
Hello all,
There is 2 juniper firewalls.side to side between them.Side A and Side B
I'm going to change side A with Paloalto and for sideB change configuration is not allowed.
So everything is ok except for vpn.inside juniper phase 1 profile is s
...
Hi,
Please can someone explain to me how GlobalProtect Prelogon can possibly work without any valid internet connection.
For example in a hotel or cafe, you have to be logged into your laptop first to connect to the hotel's wifi portal so how doe
...
Release Date: 2016-02-12
How to update: Updating MineMeld
Security
- entries in all the tables are now correctly escaped to prevent XSS (thanks Axel Bodart)
Engine
- Validation of node names (thanks Axel Bodart)
Nodes
- Miner for TAXII feeds
...
We are sending all logs from Palo to SIEM. How can we eliminate those of low or no value to us (exp. Allow_TCP_End) to be sent to syslog server? The server fills up quickly and there's a large amount of logs that provide no insight during analysis; w
...
We have user-id setup and every cluster with a designated master device for user-id mappings. I have the group mapping of the new AD group showing in the gateway itself, however when I go to implement the group in a policy in panorama, it will not di
...
Hi all,
I have enabled VPNC for my Linux users who cannot use GlobalProtect. Does VPNC use port 443 like globalprotect? Can't seem to find any information about this on the web.
-Matt
Hi, I'm trying to do some debugging of some OSPF troubles that we are having and I'd like to restart the OSPF process to see the neighbors comes up and the LSA exchange. How do I do this via CLI?
On a Cisco router it would be "clear ip ospf proces
...
Hi All,
I'm experiencing a problem with GlobalProtect and I'm hoping I can get some assistance.
I'm able to log on to the GlobalProtect Gateway. I successfully log in and Download the agent. However, when I click 'Connect'. I get an error that says
...
BPry
on:
Palo blocks on login step
SteveCantwell
on:
problem to folder pancfg
TomYoung
on:
way to block custom ip address and network address in Palo Alto
SteveCantwell
on:
GlobalProtect Machine account exists with device serial number config
aleksandar.asta| User | Likes Count |
|---|---|
| 14 | |
| 10 | |
| 9 | |
| 7 | |
| 7 |
