Dear Friends, IF 1 ISP link goes down of operator END we unable to automatically forward to another ISP link. please suggest how to do this. i am using PAN-3020 with 1 ISP and Operator END cisco with 2 ISP. Regards Satish
Would anyone have a simple example that would allow me to put a warning banner below the login table on the GP Portal page? I'm no HTML expert and have tried to follow some of the posts and documents here, but am not having any luck. I have made su
...
Hello
We have recentley tuned on SSL Decryption for some users.
Since then we are getting some SSL sites that cannot be accessed due to cypher mismatch. It is something we were exepcting, but not the amount of URL this is happneing for.
My questi
...
I have an issue where we have mulit-VRs in place 1) default and 2nd) VR that is utilized for DMZ and untrust routes
Both VR's share a common zone name "public" for example.
I have issues routing where for instance I have my internal network segm
...
Hi,
I have a strange issue where my Global Protect SSL Client connects to the firewall with no issues. I get the IP, the routes and the DNS servers but I don't get anything listed in the DNS Suffix entry. I have configured the DNS Suffix correctl
...
Hi,
I have attached my syslog configuration .
but in my syslog i missed most of the logs .
then assigned to the policy
To forward all the logs , attached configuration
what if i choose another facilty ?
if i put one interface i
...
So currently I am using wildfire but only choosing to forward the file. Is anyone using the block option? If so are what are the pros and cons?
Hello
The yearly PA bash is held in US , this all good for our North American cousins
Is there an equivalent for Europe , not all our employers can spare the expense to send people all the way to the US !
Hi all,
Is there any issue with configuring a vwire for both tagged and untagged traffic. For example use VLAN tag 0 AND whatever my real tags would be, like 1, 100, 200, etc. I'm assuming it will be fine since there is an option for 0-4094.
Any issues
...
Hi everyone.
I'm trying to setup a User-ID installation for our multi-domain Active Directory environment.
Here is a rundown on what we have
DomainA = Workstations, groups, users, servers, etc. The main domain where everything is conducted
DomainB
...
Is there a way to force PBF rules to have to be manually failved back? As it is now, if our primary ISP fails, we failover to a secondary ISP using PBF. However, once the primary is back up, things fail back to it immediately. We would like to preven
...
Hi,
We have a PA3020 with PanOS 6.1.10. We are having problem with any groups, suddenly the Palo Alto loses group mappings in 2 groups and the rule stops matching, we dont know why PA stops identifying the groups.
I have checked the useridd.log
...
Hello Everyone,
I just want to double check my understanding of AE interfaces limitations indicated below. Appreciate your feedback.
1. I cannot mix 1G copper interfaces with 1G fiber interfaces in the same AE. Is this correct for all platforms
...
Hi,
We recently updated to 7.0.5 and I cannot commit changes anymore.
Error:
______________
Invalid global authentication profile POV-Auth-Profile, only radius auth profile or auth sequence is supported.
Configuration is invalid
Validation Error:
...
I have VMWare View clients and I'm trying to set up the rule with the vmware-view App-ID, but the traffic gets dropped at PCoIP. The PA logs are showing tcp/4172 as SSL, even though PCoIP has port tcp/4172 defined.
Is this an issue with the App-I
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
