User Authentication Profile update for VPN User-ID mapping PANOS 7.0.x

Dear All,

i have problem in my VPN user Identification (they cannot login to portal) after there's update/change in my AD server group. I already doing this https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Force-User-Group-Mapping-R

IBM Notes RPC protocol inspection

Hi,

Our customer mandates that traffic crossing a DMZ must be inspected. We need to plan carrying, for old legacy purpose, the NRPC (Notes RPC) protocol which must through the PaloAlto device for inspection.

Could anyone confirm whether PaloAlto can in

VM-100 Not recognizing users from Cisco Wireless Lan Controller

Hi guys,

Has anyone managed to successfully have their VM-100/Palo recognise the SNMP authentication requests from the Cisco LAN Controller to use for User-ID?

I have followed the below document but to no avail. 

https://live.paloaltonetworks.com/t5/

VPN with overlapping subnets

We have recently acquired 3 companies and all are using 192.168.1.0/24 as their local subnet.  Now in a perfect world I could just go on-site and and change the addresses, but as well all know it's not and they have critical services running on AS400

ID 3805790 and 3805788 DNS lookup

Hello looking for more information on these Threat ID 3805790 and 3805788. 

In the monitor--> threat -->

Type Field is showing up as spyware

Attacker Field IP is private ip address 

Victim Field IP is public ip address. Victim Field public IP address is

Bazar IPsec with Xauth RSA issue

A couple months ago I noticed my VPN on my phone stopeed working. I was originally using CM 12.1 but have since moved to mashmellow touchwiz for my Galaxy S5. Def not phone related as the issue remains, and is the same no matter what phone or OS vers

Block download\upload file from web based email

Hi,

I've tried to set a new rule that will block download\upload file from web based email.

The problem is that when user downlod files from outlook.com (for example) the service is not recognize as "web based email".

Any suggsestions?

Thank you!

looking for documentation...

hello!

where can i find pdfs comparing paloalto with other fw vendors? i managed to find for checkpoint, but nothing else...

VMWare HA not working correctly after deploying v1000 Virtual Firewall

Hello,

We used NSX to push out the v1000 Virtual Firewall to all Hosts, ever since then we have major HA problems on VMWare after we reboot a Host.

After reboot the Host has problems joining HA and throws an error, the v1000 also cannot turn on due t

User to IP mapping issues while connecting to WIFI(wireless)

Scenario:

User comes to office connects to LAN. The user to IP mapping works correctly.

We allow access to internet based on usernames.

User disconnects the Ethernet cable and goes to different room where he connects with wifi.

However loses internet co

HA Failover in a Multi Vsys environment

I am currently setting up HA in a multi vsys environment, cant seem to find any documentation on the subject.

Currently I have a HA pair of 5050's with 3 vsys, HA has been setup but how do I ensure when vsys1 fails it is the only system that fails ov

OSPF Redistribution on second area

I seem to be having an issue with OSPF redistribution to BGP.  I've got two areas, the primary (area 1) that spans most of the network, and a new smaller area (area 2) that I've set up to separate out routes for a smaller connected network.  Both of