Currently for Global Protect we route all traffic through the firewall. Is there a way we can add IP’s to the routing table for GP clients only? For instance, add GoToMeeting IPs and have all that traffic go out the Internet. Is this possible?
Has anyone looked into doing any QOS for the PARCC assesment testing? Right now I'm not doing any QOS on our 5050, but think it would be a good idea to do something so the testing gets priority over some staff member watching Netflix during their bre
...
I have a pa 3020 running 6.0.8 doing LDAP lookups to multiple edir servers,
I have many users that PA shows as unknown but when I look on the server I see they are logged in x.x.x.x
Why does this work for some but not all?
I have done the followi
...
With PA-200 there is a command similar to:
set system setting fan-mode auto
in order to throttle the onboard fan(s) so it doesnt rev up to max rpm and stays there as it normally might do.
But this command doesnt seem to exist for the PA-500 ser
...
How are dedicated M series log collectors licensed. We are planning a deployment with two M-100 appliances in an HA configuration. If we add a third M-100 as a dedicated log collector, do we need a third license for Panorama?
Hello,
I am trying to configure to 2 PA to share their user-id data.
I used the following guide: https://www.paloaltonetworks.com/documentation/60/pan-os/pan-os/user-id/configure-a-firewall-to-share-user-mapping-data-with-other-firewalls.html#61291
...
When we generate a UAR (Using Monitor/PDF Reports/User Activity Report) on Panorama for a particular managed firewall, we do not get any broswing summary sections in the report. If the same report is run on the firewall itself, we do get that infor
...
We are blocking a particular category of URLs (say gambling). When we access the unecrypted site it is blocked as expected. When we add https to the URL and browse we are not blocked.
I can see in the logs that access is allowed by the FW, even tho
...
Hi,
We are moving from Juniper ScreenOS SSG firewalls to PanOS 7.0.4, 3020 clustered firewalls.
On our Junipers we make use of a feature called track-ip for Interface failover between ISP's...This basically works by pinging a far device on the
...
Hello Community,
Blacklist (such as IP Void or SpamHaus) with a suggestion that we should block that IP.
I'm hoping there's a way that we can leverage such a blacklist - for example, to have a rule in the FW that references an existing Blacklis
...
Good Day
I have a PAN-5050 configure for agentless USER-ID to a W2K8 AD. We were getting user ids/ips in the logs but now we're not. The server-monitor is connect and now errors or failures to connect. When I do the cli commands (show user userids,
...
My weekly botnet report is full of entries like:
"Repeatedly visited (32) the same malicious URL cloud.typography.com/"
I've checked this URL in the database and using the CLI, and it shows as computer-and-internet-info
Several tools I've used to
...
I have a rule that allows the administrators remote desktop access to our physical domain controller. While reviewing the traffic logs I can see that the PA is show allows and denies for the exact same traffic from my PC to the domain controller usin
...
Hi,
The certificate we use for GlobalProtect needs to be renewed and I have just paid the renewal and received the file from digicert..
In my PA500's Device Certificates the expired certificate has two lines: The second line's certificate name ha
...
Hi,
I am a somewhat newbie to PaloAlto firewall. I was wondering if someone could give some good guidance into what "Daily" tasks look for a PaloAlto Admin? What should they be monitoring on daily basis? Is there a nice checklist of things that sho
...| User | Count |
|---|---|
| 5 | |
| 2 | |
| 2 | |
| 1 | |
| 1 |
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
| Subject | Likes |
|---|---|
| 5 Likes | |
| 3 Likes | |
| 3 Likes | |
| 3 Likes | |
| 3 Likes |
| User | Likes Count |
|---|---|
| 10 | |
| 7 | |
| 6 | |
| 5 | |
| 5 |
