General Topics

Allow Office 365 not getting desired results...

Hei,

We recently moved over to a full O365 solution and I am trying to customise the ruleset to Allow for O365 traffic when all other traffic is blocked.

Unfortunately I have hit a wall and cannot seem to get the application to be allowed. I am hoping

Decryption and Certificate Questions

Hello Pros,

I would like to set up decryption for all traffic/devices accessing the internet. This will include smartphones and all sorts of devices. I would like to set it up in a way where each user is not forced to install a certificate before the

TIP: LDAP Group Mappings in a mixed 6.x and 7.x environment with Panorama

All,

I thought I would share a quick tip for those people that may be considering upgrading from 6.x to 7.x in an environment where you are using Panorama.

In PAN-OS 7.x, the information of your Active Directory domain has been moved from the LDAP se

can we identify an https web-site category reading certs cn name part as fortigate do ?

hi i asked my question in title of my message i also wonder what is the danger of doing this kind of categorization , why don't we prefer this ?

AV version confusion

Hi all,

I have a HA pair (A/P) of PA-500s and one of the devices seems to be giving mixed messages about the version of the AV definitions in use.  This has been the case for a couple of weeks now.

It is not causing problems as such, but it is not ri

Palo Alto Redundant interface

Hi Guys,

i want to connect the Palo Alto in a cross connection to switches. In cisco there is something as Redundant interfaces (link http://www.cisco.com/c/en/us/td/docs/security/asa/asa80/configuration/guide/conf_gd/intrface.html#wp1046014)

is some

Facebook videos working again?

So I've set URL filtering to block on the "streaming-media" category which has successfully blocked Facebook videos for months. This week, the videos started working again and it seems it's because they're using a different CDN domain (or multiple on

Problem upgrading GlobalProtect

Hi,

I’ve some problem upgrading GlobalProtect

Now I’ve 2.1.1 version

Activating a new version (I try with 2.2.2 and also with 2.3.1) automatic upgrade fail and I need to manually remove GlobalProtect and install new version again.

I also tried to instal

How to export a list of disabled security policies

Hey all;

This is probably a question that's been asked before but I'm wondering if there is a way to export a list of all security policies currently disabled.  I'd like to have a short list for review.  I've only been able to find the CLI to show un

Any luck with 7.0.2 out in the field?

I am curious to see if anyone has upgraded to the newest 7.0.2.  I tried 7.0.1 but had a few issues with a commit command to one of my firewalls.  Still working on that but has anyone installed 7.0.2 and are you happy with it? 

PAN-OS 5.0 CLI script to change TCP and UDP Timeout Values for Default Applications on device

I have a requirement to change the timeout values on all of the paloalto os preconfigured/default applications (2000+ applications). Using the web interface, it would require opening and configuring each individual application.  Can anyone lend assis