Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello
I have question not directly connected to PA but I think here are peoples who using such solution or are interested in
I spend over a hour on googling for simple and free solution for recieving SNMP trap and sending alert by usb modem as a SMS
...
Hallo
i am looking for the following documentation. I searched the knowledge base but could not find any document:
1. IPSEC Configuration Guide with PAN OS 6.0
2. Configuring PA Firewall for Remote Access Management.
Could anyone give me an exact link wi
...
Hi all,
I config IPSec betwen two PA device: 1 PA5020 and 1 PA
I config as guide: How to Configure Certificate Based Authentication for IKE on PAN-OS 6.0
I generate CA on PA 5020 and import to PA 200
But on PA 200 i can't sign new Cert with the imported
...
Hi ,
i have a palo alto firewall, i have been asked to put together the pre-shared keys for our VPN peers.i am not able to locate the key for some tunnels, is there any way i can recover the key from my config ?
Regards,
~Harry
Hi All -
Looking through my threat monitor and I am seeing a lot of Suspicious DNS Query entries in there. I have two internal DNS servers, and the entries are for both of them -- the drop-all-packets action is being taken, so it's good the PA is sto
...
Dear community
After updating GP to version 2.1.0 I get the message "Server certificate verification failed" when trying to connect.
The same connection with GP version 2.0.4 works fine. The reason for updating is OSX 10.10 Yosemite.
I can't see any err
...
Hey all,
Is there a way to clear the threat pcap database?
We are running PanOS 5.0.x so the pcaps are not automatically overwritten, and we get the message saying our daily packet capture limit has been reached.
We have turned off pcaps on the security
...
Hello,
New customer here, currently working my way though configuring the various parts of the firewall...
At the moment, I'm working on User VPN, and I'm finding it difficult to find clear step-by-step documentation. I did manage to make an SSL vpn co
...
Hello,
I'm actually blocking skype application but I would like to allow skype manager web site (https://manager.skype.com/).
The web site manager.skype.com is blocked because recognized as skype application.
The idea is to build a application that allo
...
For dropbox on the web. I need to block uploading, this works with chrome, ie. but with firefox if i create a File-Blocking policy with the following. Firefox will not stop the dropbox upload. IE and Chrome will.
Any application upload block
applic
...
Is there anyway to import a list of Terminal Server Agents installed to the firewall?
I have about 250 Terminal servers.
We are trying to reduce our unused Security Policies. We created a custom report to show Security policies run in the past 30 days.
I would like a listing of all Security Policies and then remove the Policies that have not been run in 30 days. I am
...
Hi Guys,
Has anyone seen the PAN causing an issue with Cisco ASAs when doing a failover? I don't have much details yet but wanted to see if anyone has seen this or something similar.
Thank you in advance.
As far as I am aware Panorama doesn't have counters so are the unused rules identified based on counters or similar from the devices in the device-group or based on traffic logs?
how are application and service treated in a given policy?
multiple apps in a policy?
multiple services in a policy?
apps and services in a policy?
how are the different scenarios and'ed or or'ed?
Thanks
David
TomYoung
on:
One Global Protect Portal and Two Global Protect Gateways in One Firewall
OtakarKlier
on:
Restricted tcp flow throughput in a VPN tunnel
reaper
on:
password reset for user through support.paloaltonetworks.com
OtakarKlier
on:
Disable USB Port on Firewall
PavelK
on:
Web Auth FW with HA
reaper
on:
Negate Deny Rule
