I am trying to parse ISE RADIUS logs to help map wireless users to IP addresses. I have the Palo configured as follows but I am not getting any info from ISE. I am not that familiar with ISE and did not set up that end but have been told that ISE is
...
Hi,
today from 09:58:30 AM till 12:22:27 AM (CEST), by executing the command "tail lines 3000 mp-log varrcvr.log" on some cutomers firewall, I've noticed this log message repeated every 15-20 seconds:
Error: pan_fbd_fwd_msg_process(pan_fbd_fwd.c:
...
Why does below document advise we need a L3 interface for captive portal? We are running solely vwire and I still get on form when testing. I do have repsonse pages setup as well
https://live.paloaltonetworks.com/t5/Configuration-Articles/Configur
...
Hi,
After doing an upgrade from GlobalProtect 2.3.4 to 3.0.1 we're having issues with users not being able to do two factor authentication in combination with SSO.
The software we're running is SecurEnvoy, which has been working fine up to the cl
...
Hi guys,
I've followed the documentation on how to generate a CSR (https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Generate-a-CSR-Certificate-Signing-Request-and-Import-the/ta-p/53593) but when importing the certificate I'm only
...
Hello,
How Palo Alto choose action for correlated events? For example we have several medium severity events with summary Host visited known malware URL. In some events action is alert and some events action is block-url.
I need to refresh some 2050's HA pairs for 3020 HA pairs. This shoud be a pretty simple prcedure but I cannot find any instructions on how to perform this upgrade. Beside the fact 2050's don't have dedicated HA interfaces, are there any other gotch
...
Hello folks, need some help here. After upgrading from 6.0.8 --> 6.1.0 --> 6.1.2, the WAN interface of the upgraded device, part of an HA-Pair in active-passive mode, does not register its MAC address with an upstream directly connected L2 switch.
...
There is a feature to highlight unused rules. If a rule goes from used to unused does that feature show it as unused and if so how long does it take to show it as unused?
Any sites other that eicar.org I can use to test SSL decrption and response page? Due to symantec on 2012 server cant test using that site. Any recommendations will help
I dont see any telnet option on the firewall. Wanted to telnet mail.com port 25 just to check connectivity.
Hi guys,
Im new to this and im trying to install a pa-200 at home. I have managed to install it in a layer 2 configuration but i would like to install it now in a layer 3 configuration.
I have followed this article https://live.paloaltonetworks.com
...
Hello
What really is the purpose of using that checkbox in policy action with drop or reset ? What are benefits ? Thanks
Regards
Hi all, before I head of and start configuring is it possible to test SSL Decrpyition in Vwire mode? I ahve a test server spun up in my lab and wanted to confirm
Any one having any issue with DNS with regard to a recent threat prevention and wildfire dynamic update?
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
