General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 17238 Views
  • 44 replies
  • 32 Likes

Retrieve Primary group of a user

Hi,I've just upgraded my PA-2050 to 4.1.1 and configured LDAP servers and group mapping for building some policies rules based on AD groups.Everything works well except one thing.The primary group of a user is not retrieved.And this is a problem beca...

pboegli by L1 Bithead
  • 648 Views
  • 2 replies
  • 0 Likes

Resolved! antivirus feature on https

Hi all, i'm currently testing some features of our PA-500, i've activated the antivirus policies and going on eicar i can see it blocks the download of the file, when i try to download from https the download proceed. How i can check and block antivi...

fcellini by Not applicable
  • 2126 Views
  • 15 replies
  • 0 Likes

block by Domain Suffix (.xxx)

Looking for a way to block the domain suffix of .xxx I've created a custom URL catagory with *.xxx (and I also tried *.xxx/) and that works....however It will also block a URL string with.xxx anywhere in the URL (i.e. www.google.com/news/foobar.xxxds...

mjandin by Not applicable
  • 1306 Views
  • 2 replies
  • 0 Likes

PAN OS Packet Capture

I know where and how to start a packet capture on the device. I would like to know if the capture can be configured to capture only specific parameters (ie src ip, dst ip, src port, dst port). I don't see those options on the web GUI.

snormoyle by Not applicable
  • 679 Views
  • 2 replies
  • 0 Likes

Resolved! PAN OS Syslogs

Need to find the field identifiers in the syslogs, some of them are pretty obvious while others are not.

snormoyle by Not applicable
  • 479 Views
  • 1 replies
  • 0 Likes

Anyone tried to connect GP from iphone/ipad with ClientCert?

I'm tring to connect GP from iPhone5 and iPad4.3.3 with Client Cert Auth.I can't see the establishment of IPSec VPN, however, I could establish VPN from Windows with same client cert.I want to see the working sample cofiguration.Could anyone share th...

emr_1 by L4 Transporter
  • 1105 Views
  • 1 replies
  • 0 Likes

Resolved! licensing VPN clients

hi!I would need some help understanding the PAN licensing model fo VPN clients. we are planning a new deployment and would like to offer our clients (Windows and iOS based) the possibility to access corporate resources. since only a very basic functi...

santonic by L5 Sessionator
  • 1502 Views
  • 4 replies
  • 0 Likes

Thinking of upgrading to 4.1.0

We have two 2050's in an active/passive cluster running 4.0.5. We are looking to upgrade to 4.1.0. Had anyone had any negative experience with this version - particularly related to the SSL-VPN changes or User-ID functionality? I've heard a few thing...

bvest by Not applicable
  • 1980 Views
  • 13 replies
  • 0 Likes

SSL VPN

I just started using PAN 2050 in production and confiuring ssl vpn. Issue is that after client computer connect to vpn, client computer loses all internet access. What makes ssl vpn to work so that client computer doesn't lose internet access locally...

HTTP Tunneling

Wondering how the Palo Alto detects HTTP tunneling and how would a security policy be configured to detect/prevent this situation.

snormoyle by Not applicable
  • 575 Views
  • 3 replies
  • 0 Likes

Resolved! HA Active/Active design

Hi all,We would like to deploy 2 PAs on two different sites in an Active/active design. The two sites are 10ms far away from each other.So the first question is : Is 10ms (RTT) acceptable from a PanOS perspective to enable the HA feature ?The IP plan...

bdaussin by Not applicable
  • 1215 Views
  • 3 replies
  • 0 Likes

Resolved! Cannot update software since upgrading to 4.1

Hello all,I recently upgraded to the 4.1 OS from 4.0.1. The firewall settings are fine but for some reason whenever the firewall tries to download any new software like 4.1.1, GlobalProtect, Dynamic Updates it keeps getting the error "Failed due to n...

devere by L2 Linker
  • 2667 Views
  • 13 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors