Resolved! syn-cookie
Hi, Where I can enable syn cookie . SYN Cookie is activated when the SYN flood attack threshold is exceeded ? Thanks
Hi, Where I can enable syn cookie . SYN Cookie is activated when the SYN flood attack threshold is exceeded ? Thanks
Here is my dilemma: I have an appliance that is accessible over the internet. I need the public to be able to access this (it is for web conferencing). The admin portal is also available. I would to block access to the admin portal over the internet, and make it only available from my LAN (via its private IP). Let's say that the URL is: http...
Dear engineers.I could help I have the following questions:reviewing this document.https://live.paloaltonetworks.com/t5/Configuration-Articles/Captive-Portal-Using-Transparent-or-Redirect-Mode-in-Vwire/ta-p/66125My question is how I certificate, try to find the certificate mentioned in the link, but can not find or can create it.in my case I am ...
I see examples of using 2 ISPs with one PA. I also see that senario with Global Connect, Lad Balancing and IPSec Tunnels. However, I do not see where it states these types of senario's can be used in a PA-200 HA senario. Can anyone shead some light on using Dual ISP's with HA Palo Alto Firewalls. I know the fail-over is different on the PA-200,...
Hello, My question is as follows: If I make changes (ruleset, objects, etc.) from the command line, how do I get those changes to show up in the GUI? What if by chance someone else is working in the GUI; what happens to my changes if a save and commit is done? Or, if I perform a save and commit? Situation: Brand new firewall is installed and in...
Hello After Upgrading To 7.1.1 The 2 devices PA-500 mode Active/Passive. The display keep Not Synchronized. The command -show job id x- for HA sync display OK (no warnings). The command -show high-availability state-synchronization- show all synchronized except A/A session stup A/A session stats and A/Packet (I am in A/P so it is normal). Is It ...
Has anyone had to revert back from an upgrade? Especial from 7 OS from a 6 OS? If so how did you do it and how easy was it? I am preparing to move from 6.1.10 to 7.06 and I want to make sure that I cover every possible scenario. Luckily I have a secondary that I can try it on first. Can you revert back and reinstall the previous OS that you upg...
I have a rule matching for ms-update app-id, but when looking at logs I see sessions hitting the rule that have an imcomplete application. How is this possible?
Hi there, recently we have implemented ssl decryption in our network , But Chrome comes up with "ERR_SSL_FALLBACK_BEYOND_MINIMUM_VERSION"
Does anyone use vpnc (As in the linux ipsec client) with xauth connecting to a PA? We have a bunch o' PA's which we are in the middle of upgrading to 7.1 however once an upgrade from 7.0.6 to 7.1 is done, VPNC will no longer connect. Downgrading back to 7.0.6 again allows VPNC to connect. The error in the logs is (ISAKMP_N_ATTRIBUTES_NOT_SUP...
I am fairly new to the company I work for and have inherited a network that has two ISP's with two firewalls. One firewall is an older ASA and the other is a small Sonicwall. I have pretty good experience with the ASA platform. However, the Sonicwall is new. They currently have a DMZ configured on the Sonicwall using something called "Tran...
For instance, web browsing on port 8080. I don't want to just set the service as I also want to use port 80 and there are other apps in the rule and I'd like to use app-default as the service. I defined a custom app with web-browsing as the parent and the port as tcp/8080. That worked until I upgraded to 7.1.2 and then it broke. I'm aware t...
Can DNS Sinkhole be done with Vwire configuration or does it need to be Layer 3?
Hi, we are having an issue using app override. 1) We have created a custom app for Oracle (without timeout). Using these ports: tcp1521-1541. This is the config This is the app override policy: This is the security policy (app any and ports involved in this app 1533 and 60xxx): Service profile for ports open in this ORACLE connectio...
Running 7.0.6 on 7050's I cleared traffic logs and lost connectivity to management sever and took about 30 min after restart of mgmt sever for traffic logs to reappear . Is this normal. Which log file has info on managemt disconnect files/reason info.? Log Reevier logs showed LPC card shut down as well but wasn tsure if that would equally cause...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

