If an expert could please take a look at a test DMZ zone I'm trying to configure on a PA-500 with OS 5.0.8 and tell me where I've gone wrong I'd appreciate it!
I realize it's wide open at the moment, but it's just for personal testing/understanding pu
...
Hey
i have a problem that traffic does not match to a rule
i have this rule
"VIP Users" {
profile-setting {
profiles {
file-blocking "Allowed file type-VIP";
}
...
Hi Guys,
Have an issue with a pa-500 firewall running 5.11 os. There are 2 problems:
1. The system seems to reload every week or so which in itself is bad enough, but when it reloads it is backnto default config.
2. A slightly lesser issue is that the
...
Ok need some help. I have a 1-to-1 NAT that is not working. Monitor-Traffic shows the Application as incomplete.
NAT Policy
Security Policy
Monitor
All,
I have a bizarre situation and I'm wondering if anyone has seen it before. We are currently using a pair of 5050s in Active/Passive. They are configured with a very simple OSPF instance and have their default route injected via that OSPF instan
...
When an URL is categorized as malware by PAN-DB, I can´t find the reasons of such decision.
Why has it been categorized as malware?
Is there any way to know more about such decision?
I will be grateful if you can explain me this decision.
G.A.
Hello
I am testing wildfire with FW 6.0.0 and WF-500 6.0.0
I don't know what purpose 'download sample file' button and how to use.
Could someone please let me know it?
Hello,
I try to "commit" Palo Alto firewall and the occurs the following error:
"Commit failed . see management server log file (msg.log) for details"
Can you help me ?
thanks in advanced
Currently on v1.1.6 and want to upgrade to latest. Can I go directly to v2.0? (I will make sure the certificates match)
Good day all,
I am new to Palo Alto so this question might actually seem rather trivial.
Most of my peers configure from the GUI and are not very familiar with the Command line. I am more comfortable with the command line so I am trying to do configu
...
I have a PA-200 that I'm trying to set up in a simple lab environment. Eth1 is configured as a layer 3 interface with a public IP on it and Eth2 is configured as a layer 3 interface with an internal IP address on it. Eth2 is configured to hand out DH
...
Hi all,
does anybody know wether there is a possibility to recognize Firefox not using user-agent-string. Because some FF-user take the user-agent-string to appear as IE.
The company don't want this for safety-reasons due to the addons. Thx
Cheers Klaus
In looking at outbound traffic I can see quite a bit to a network range owned by my ISP. I'm guessing that it's a cache. The application traffic seems to be what one would expect to be efficiently cached (ms-update, symantec-av-update, http-video, et
...
Hi all,
We're in the process of migrating from Juniper ScreenOS devices onto our new Palos and I have some questions about ALGs and service timeouts.
On our Junipers, there were a couple of ALGs that we had to turn off due to them mangling the applicat
...
We received notice from our ISP of flagged traffic coming from our firewall's internal ip address to many internet ip's via tcp 135. User ID is turned off on the public facing security zones. We are on PanOS 6.0.0
Anyone else seen this? I set a securi
...
OtakarKlier
on:
Basic question regarding policy
Astardzhiev
on:
Is A/P Throughput synchronized?
OtakarKlier
on:
How to correctly decrypt FTP (over TLS) traffic
Astardzhiev
on:
Many government sites are not opening on paloalto networks. Same is opening on outside network
| Subject | Likes |
|---|---|
| 5 Likes | |
| 4 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 15 | |
| 10 | |
| 10 | |
| 5 | |
| 4 |
