Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Have a question about the functionality of WildFire. Here is the scenario (assume we have a WildFire subscription so we are getting updates every 30 minutes):
We are using 4 User-id Agents and today some users started experiencing problems with certain sites they use. The same sites for all users.... but not all sites. We have many ad group based rules and some are still working while others seem to have
...
Hello All
Out of the box, my 3050 Firewall had PAN OS 5.0.x and I wanted to upgrade it to.the latest 6.0.5 release. My Firewall does not have internet access yet, and so all the following things were done offline by downloading files on my laptop.
So,
...
Does anyone have any information on how to get user-id to work with a VMware View security server sitting in the DMZ? Right now the only way we can get PCoIP traffic to flow to is by specifying the ip of the VDI machine that is being connected to. Wh
...
I have a portal and 3 gateway's setup. From my home network and a couple other home networks Global Protect works with no issues, We can disable the client, re enable it, change to different gateways on the fly and it connects right up.
Now for some
...
We just attempted to upgrade some 5020's to 5.0.14-h3(mainly to patch the evasion vulnerability) and quickly found that the upgrade broke traffic traversing the firewall. During the short period of time it we were running on 5.0.14-h3, there were a
...
Hello,
I'm trying to verify which SSL/TLS versions and Ciphers the PANs accept for WEBUI connections. Specifically I am trying to verify that it does not accept connections using weaker Protocols or Cipers and if it is configurable.
Please note that
...
Last week I ran an ACC report for the top 25 applications. Netflix was #3 (university environment, so it's to be expected). Today, I ran the same report and Netflix (as an application) is no where to be found. I launched Netflix on my computer to
...
Hi All,
I'm preparing for tomorrow's iOS8 update. Last year with iOS7, we got slammed on bandwidth. This year now that we have the Palo Alto, I'm configuring QoS so that the iOS update doesn't eat all of our bandwidth.
Does anyone know what App-ID th
...
Why does some traffic in the logs not have a user tied to the IP address at times even tho in the logs the IP has a user mapped to it most of the time. This is causing policy to be dropped down to a different level.
PAN-200
Version: 6.0.1
GP Agent: 2.0.4
Having a problem with a laptop (Windows 8.1) and authenticated using certificates and active directory. Palo Alto and network newbie. New to Windows .. I've been a linux admin for so very long. Help ...
So .. we
...
I look after a PA2050 running OS 4.1.8
I am trying to setup 2 new static routes in my virtual router but they are not being picked up when I do a show routing route or show routing fib after a commit.
One of the routes is a new one and the other is a r
...
Hi,
I would like to remove a single member from an address-group, here is the query I am sending:
https://firewall1.it.mydomain.net/api/?type=config&action=delete&xpath=/config/devices/entry/vsys/entry[@name='vsys1']/address-group/entry[@name='NameOfTh
...
My PA can not resolve FQDNs pointing to a CNAME.
This is dangerous, if you are using FQDN instead of IPs in policies. They can stop working.
We configured a FQDN hostname host.mydomain.de and bound it to a policy.
Few months later moved this Service to
...
Hi!
Customer configured Palo firewall to work in Layer 2 mode to protect VLAN. In that VLAN there are two servers in MS NLB configuration. In VLAN configuration in Palo, static MAC entry is configured for virtual MAC address, but that entry isn't disp
...
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
