Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi there,
Do you know where I can find and uptodate "platform specifications and features summary" document?
Mine is old (March 2011) and there is no PA3000 nor PA200 inside. I search on the website but I can't find this pdf.
Regards,
Edouard
I have purchased two (2) Panorama devices M-100 to be setup in HA-mode.
A couple of questions:
a) There are two interfaces in the front. One for Management, but what is the second one (the one to the right) used for?
b) The devices are "activ
...
Hi guys,
I have a syslog that I make some monitoring dashboards and the customer want one view about all botnets in my network.
I had configured Palo Alto to send the logs to syslog. But I can't found the log about botnet.
Somewhere know how can I do t
...
It appears to me after diligently searching that Palo Alto firewalls do not support Unicast Reverse Path Forwarding (RPF/uRPF) in any form. Is this correct? If not, how does one implement reverse path forwading on a Palo Alto Firewall?
Recently rolled out GP to our users. We have some that have issues using IPCommunicator while using GP. Anybody know of anything to help these users? They are able to ping TFTP servers.
Users are in UK - CallManager Cluster is in US (Wisconsin)
Hi,
When I log on GUI shows me:
"Authentication timed out"
What I can do?
I can not access through SSH.
Regards,
Why a separate management port if I can also logon from the trusted port? Is there a setting so I can prevent anyone from logging in via the trusted port so that they must use the Management port? Does the MP offer some special settings not available
...
I feel this may be a dumb question, but I was hoping somebody could give me clarification.
We had some issues with users receiving malware or a virus through a separate email account (ex testcompany.com), them opening it, and then it would send the em
...
I'm running PanOS 5.0.11 on a 5060 and am looking at exporting netflow into SiLK. In the SiLK logs, I'm seeing thousands of messages that look like this:
Oct 9 09:37:43 hostname rwflowpack[3470]: IGNORED|111.222.112.13|100.200.195.225|33775|6917|6|0
...
Hi guys,
Our staff try to access on website https://webmail.spintel.net.au, but session 'aged out'. If we set that website to bypass decryption, it worked.
The certificate was issued by RapidSSL SHA256 CA- G3, but it is not on the trusted CA list. How
...
What is the idea/reason behind the facility setting for syslog? Is LOG_USER, and LOG_LOCAL0-7 just a method of ID, or is there something more to it? When setting up to send to a syslog server should you aviod using LOG_USER and use LOG_LOCAL(0-7)?
Hi,
we're planning on upgrading from version 5.0.8 to version 6.x.x. Which version of panos 6 is the most stable?
Thanks.
Our library has a Millenium server, the application is millenium-ils.
It stopped communicating after APP+Threat release 484 installed.
I rolled back to APP+Threat release 482 and it restored communication.
This morning APP+Threat release 485 installed
...
Hi Commuity,
I'm looking for your tips and hints regarding TP best practices.
(hopefully this newbee question is not too bad :smileyconfused:)
Let me explain our setup:
As a first step to a new IT Security Infrastructure we are running a HA-pair of PA-3
...
Pan documentation is very weak on large scale mutli-vendor IPSEC hub terminations. Can someone help out and provide best practices, reference architecture, guides, pitfalls or experiences?
My design goals:
- Separate VSYS
- Use dynamic ro
...
TomYoung
on:
Confused about QoS on Palo, need some assistance.
TomYoung
on:
Static Port Address Translation question
TomYoung
on:
what is the cli command for checking last failover
reaper
on:
SSL inbound inspection certificate issue
