can we identify an https web-site category reading certs cn name part as fortigate do ?
hi i asked my question in title of my message i also wonder what is the danger of doing this kind of categorization , why don't we prefer this ?
hi i asked my question in title of my message i also wonder what is the danger of doing this kind of categorization , why don't we prefer this ?
Hi all, I have a HA pair (A/P) of PA-500s and one of the devices seems to be giving mixed messages about the version of the AV definitions in use. This has been the case for a couple of weeks now. It is not causing problems as such, but it is not right either. If anybody can advise on how I can get our PA-500 to report correctly it would be ap...
Hi Guys, i want to connect the Palo Alto in a cross connection to switches. In cisco there is something as Redundant interfaces (link http://www.cisco.com/c/en/us/td/docs/security/asa/asa80/configuration/guide/conf_gd/intrface.html#wp1046014) is something which like this feasible in PA firewall or something a solution for this scenario. As per m...
So I've set URL filtering to block on the "streaming-media" category which has successfully blocked Facebook videos for months. This week, the videos started working again and it seems it's because they're using a different CDN domain (or multiple ones) -- is it better to block by the App-ID "facebook-video" instead of URL filtering?
Hi,I’ve some problem upgrading GlobalProtectNow I’ve 2.1.1 versionActivating a new version (I try with 2.2.2 and also with 2.3.1) automatic upgrade fail and I need to manually remove GlobalProtect and install new version again. I also tried to install 2.2.2 and then trying an automatic upgrade to 2.3.1 but it still fails This is the log (T688) 0...
Hey all; This is probably a question that's been asked before but I'm wondering if there is a way to export a list of all security policies currently disabled. I'd like to have a short list for review. I've only been able to find the CLI to show unused security policies, and from the Policies section I can list all "disabled eq yes" but no way...
I want to know how to run a Report on all users who used a File-sharing App. If i use Traffic Log i dont see Application sub category as the Attribut choice.
Hi guys, I have a scenario whereby we have a publicly issued wildcard certificate for our organisation and I'm wanting to use this in conjunction with Captive Portal on the PA-500. I've set all policies up and configured Captive Portal to redirect to a Loopback interface on the firewall (through the use of a DNS name which resolves to the IP of ...
I am curious to see if anyone has upgraded to the newest 7.0.2. I tried 7.0.1 but had a few issues with a commit command to one of my firewalls. Still working on that but has anyone installed 7.0.2 and are you happy with it?
I have a requirement to change the timeout values on all of the paloalto os preconfigured/default applications (2000+ applications). Using the web interface, it would require opening and configuring each individual application. Can anyone lend assistance by pointing me to a CLI script that can make easier work of this task. Greg
Hi, Is it a good idea to connect the mgmt interface directly to wan ? or should it only be accessible locally and via an access server for remote management ?
Dears, We are facing a strange problem... sometimes external users connected via global protect cannot resolve names without the sufrix domain... Example:\\NAMESERVERorhttp://netflow:8080 Strange behavior below: when we ping that name we see that it is not being resolved...But when we do a nslookup we see the name resolution is OK browsing pro...
Hi, I am trying to create a custom threat signature based on the HOST: header in the URL request and URI request field. The signarure is working as expected. Issue is when I tried to add a pattern which is less than 7 bytes in http-req-host-header field, the signature is not accepted by the device. Any help is appreciated. RegardsThanzeer
Hi, We bought a PA3050 appliance that will replace our PA4020 appliance. So I need to know how to migrate data and configuration from the older one to the older one. Is it possible jutst by copying files from one to the other?. Thanks
Hi All, I am using pan os 7.0.2, is there any option to generate compliance based reports from firewall itself. with regards,Ram Balaji.
| Subject | Likes |
|---|---|
| 4 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like |
| User | Likes Count |
|---|---|
| 7 | |
| 5 | |
| 3 | |
| 3 | |
| 2 |

