Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello,
Does anyone know if itis possible to change the severity of some email alerts? Like I don't know why saying app&threats/wildfire is updating every 15 minutes is categorised as severity "high"..
Kr,
Arne
Hi Team,
I user PAN OS 7.1.0 and now i CAN'T block youtube although i try using both application and url to block.
1, Block by Application
I created a rule to block YouTube-base
I still view video on youtube normal
In log traffic, i see P
...
Is there a good way to review you firewall against the release notes of the upgrades that you are considering? I have been reading them and in order to avoid issues moving to 7.06 (TACS recommended most stable version) I should do an intermediate of
...
Hi,
I have created a rule to allow ping between to and fro from servers below is the scenario
source zone: A, B, C
Source IP: 1 , 2 , 3
Destination zone: A, B, C
Destination IP: 1, 2, 3
Application: Ping
Service: application-default
action: Allow
...
I have a Palo Alto PA-200 and the setup I'm trying to configure is as below.
This week i was asked to configure radius accounting as a source for user-ip mapping. I was very surprised to see that this is not nativly supported. In lots of ways it is the one of the nicer ways to be able to get user-ip mappings. And as other ven
...
Hello Community,
Can someone please tell me why when ever I try create an Encryption setting aes256, as shown in the image, it defaults to aes-128-cbc
I'm run PA-VM software version 7.0.6
Thank you
Carlton
I have installed a VM-100 and was able to configure the management interface. When I go under the network tab all interfaces are showing as down. How do I get an interface to go into an up state?
We're getting a lot of blocked traffic on UDP port 80 and 443. From looking into it this is Google's new QUIC protocol over Chrome.
What is everyone else doing in this case? I'd prefer not to allow all UDP traffic over port 80 & 443. Any chance off a
...
Hi there,
I had an interesting go round with PAN support involving proxy ARP and source NAT. Background: I don’t use the PAN for public ingress/egress traffic, for me it is for internal DMZs only. As such, I’ve not had the opportunity to utilize
...
I'm sure this has been answered and I am just not using the correct terminology. I am trying to get the requirements from PAN for a Global Protect install with respect to using a Microsoft CA to issue machine certificates to endpoints.
I want to st
...
Hi all,
A few months back I wrote an application that will let you save and then switch between profiles for Global Protect. This is a commonly requested feature it would appear, and I'm unsure as to why the client doesn't include this option. This h
...
Hello Community,
Can someone give me a general guide as to license costs. For example, if I wanted purchase, URL Filtering license or Antivirus or Anti-spyware license for a year, how much would that cost me as an individual as opposed to a corpora
...
We're in a situation where we have mutliple PA firewalls deployed and many of them have their own GP SSL VPN set up (e.g. Manangement range, lab, severeal different customer "islands"). The lack of "connection profiles" within the GP Client is a rea
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
