idle traffic sessions
I know that you set timeout for global protecte sessions that go idle but can you set other idle traffic to time out?
I know that you set timeout for global protecte sessions that go idle but can you set other idle traffic to time out?
Hi all -- Lately, with the Win10 release, I'm finding many of my VPN users are downloading gigs of updates over my meager 10mbps company internet cxn. I'm wondering if there is any way to block specific services/applications (ie.- ms-update) over a GlobalProtect connection.. I can't find anywhere to specify a URL filtering profile in the Ga...
is there a command to schedule shutdown firewall
Is there a way to pull information on a specific user connected on globalprotect throught the CLI? I know the command: show global-protect-gateway current-user pulls all the users in... but what about just for a single user? Thanks.
Before I go on a wild goose chase, has anyone seen an increase in threat 30419 (RFC2397 Data URL Scheme Usage Detected)? It seems like these things trip for a while until PA figures out someone's using something novel in a new App. A new application sig comes out and the alerts go away...
We are looking to implement QoS on our Palo Alto device for our voice traffic. We are currently tagging voice traffic with DSCP 46(ef). This is done at the source using Windows group policy to tag all traffic that originates from application "lync.exe". We can see the traffic is definitely being tagged by performing a pcap at different points...
I have a Wireless Access Point with multiple SSID's configured connected to a PA-200 on the interface ethernet2 (vlan). The PA config is setup as per https://live.paloaltonetworks.com/t5/Configuration-Articles/Setting-Up-the-PA-200-for-Home-and-Small-Office/ta-p/61838 I would like to apply a security policy between each SSID. How would I ap...
Howdy all! I am really curious about Device Group Hierarchy and Template Stacks in 7.x. There could be incredible value in utilizing these features in my environment. The biggest question I have is: Does Panorama AND the target firewall BOTH have to be on 7.x in order to take advantage of this management structure? It sounds to me like the ...
Hi All, After implementing SSH decryption, can PA have the visibility to idenfity whether commands or any other data is being shared over ssh with regards, Ram
Hi all, We have a Firewall divided in two vsys and we are having problems with the configuration of some reports. When you try to generate a new "PDF Summary" and you have selected the virtual system "Shared" there are available some predefined reports that are shown as charts. However, if we select an individual virtual system there are not p...
Does anyone know how long a custom dynamic block list take to refresh? Is it suppose to refresh\pull every 15 minutes? And if you do a commit does that make the change immediate?Here is my scenario, we are using a custom dynamic block list to add xp pcs to restrict the internet. When the pc is upgraded to Win7 we than remove the ip from the bloc...
Apple just released OSX El Capitan, is GP 2.3.2 compatible/certified to use on OSX El Capitan? Thanks, E
Hello, The M-100 is running on OS 6.0.9I did command via sshshow ntp Server error : op command for client dagger timed outthat is why management resource is consuming... I can't beleive that as time went by,, I have seen that result continusly continuing when I did command until now show clock is working properly and I did command as 'debug so...
Hi All, i have a requirement to rename alot of my address objects on firewall,is there a command with which it can be done so it can be made into a script? thanks for any help.
Hi Guys, Have any of you read the most recent NSS report for PA DBS below. Please let me know if any of you seen this. https://library.nsslabs.com/reports/technology-brief-palo-alto-networks-bds Thanks S
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

