General Topics

Resolved! How many users can a account connect into global protect?

Hello,

My customer' office use SSL-VPN with Cisco ASA.

We are going to change Paloalto FW instead of ASA.

All employees use shared a account for SSL-VPN.

How many users can a account connect into global protect?

It is used a same account.

Thanks,

KC Lee

How many can I make custom url category on Panorama?

I have recognized I can make maximum 50 custom category on PA.

then is it same on Panoram ?

I wonder how many can I make custom url category on Panorama.

Thanks.

Is it possible and OK to disable user cert caching?

After revoking a cert being for GP, the device is still able to connect. I found that it is cached somehow. So is it possible and OK to disable the caching of user certs for authentication?

> show system setting ssl-decrypt setting

vsys

...

Resolved! Contact a Sales Engineer

During last night's trouble call the technician mentioned something like 'you have access to a sales (or service) engineer, and we'll have him contact you. It's part of your contract.'

Wonderful. Who is this person and how can I find him? Searched o

...

packet based attack

Hi,

Will Choosing all options cause a false positive ?(especially IP option boxes)

And how can we see these drops ?

Unable to See the Threat Logs for Packet Based Attack

Thanks

Cannot add zone to security rule from panorama

Hello there:

I'm new to palo alto through Panorama, so please excuse me if this is a silly issue. I created a template and a device group (without devices in it yet) and started to create everything else (addresses, groups, users, nats, sec policies,

...

Resolved! How To Export Users From A Security Rule?

Is there an easy way to export users from a security rule?

Malware site and response page - problem

Hello

Some time ago I created url-filtering profile:

Today I found in wildfire report that someone try to download something from malware site, so I try to check is my configuration works as expected.

First of all I checked is it still a malware site:

ad

...

Resolved! Is there a way to tie the Cert auth to AD username for AD auth?

Hi Guys,

Is there a way to make sure that the GP checks that the AD user name matches the certificate common name when using both AD and Cert profiles for authenticating users?

Thanks,

QoS Statistics with external tool

Hello,

QoS statistics is an excellent tool to check the realtime bandwidth divided by assigned classes.

It's possible using of external monitoring tools (Ex. Nagios, Cacti, PandoraFMS, ), to obtain the same graph to have an history of bandwidth divide

...

Threat ID 1270062

Is anyone else getting these from their reports? Virus/Win32.WGeneric.duznb(1270062) I am wondering if it is false positive - the threat ID database is unable to pull any analysis on it. Please let me know!!! Thank you!!

Resolved! Use proxy only on certain URL's

Hi,

I wanted to know if this was possible? We currently have an issue with 1 of our online services and it turns out to be a routing issue between Virgin and BT. The server seems to create 2 connections and when it is one the first connection it is fi

...

Resolved! Emergency FTP on a Friday Night

PAN-200

PAN OS 6.

So there are, standing up an FTP server for client use. Got it configured, and tweaked, and secure. Planned to figure out how to open up the firewall next week.

After hours. Manager called. I'm on a conference call. Have some clie

...

Resolved! Latest content updates failing?

Anyone else seeing this one?

On both my firewall installations (2020 HA pair and 3020 standalone), the last two content updates (the failed one 473 and the replacement 474) are failing to complete, according to the job log, vis-a-vis

Yet the relevant c

...

Resolved! PA-200 Initial Configuration from console only

Trying initial setup of PA-200 using console connection (public on ethernet 1/1, no mgmt connected). I know I have to remove virtual wire, but having validation error below. Any suggestions ?

delete network interface ethernet 1/1 virtual-wire

delete ne

...

Discussions

Resolved! How many users can a account connect into global protect?

How many can I make custom url category on Panorama?

Is it possible and OK to disable user cert caching?

Resolved! Contact a Sales Engineer

packet based attack

Cannot add zone to security rule from panorama

Resolved! How To Export Users From A Security Rule?

Malware site and response page - problem

Resolved! Is there a way to tie the Cert auth to AD username for AD auth?

QoS Statistics with external tool

Threat ID 1270062

Resolved! Use proxy only on certain URL's

Resolved! Emergency FTP on a Friday Night

Resolved! Latest content updates failing?

Resolved! PA-200 Initial Configuration from console only

B2B VPN IKEv2 Fail with Amazon Private Cloud Peer

Help understanding Asymmetric Path issue

Can't import a certificate via XML API using C#

Unable to download new version

Edit personal information

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

CVE-2024-3400 IOC's

Re: Solution for "SSL decryption bypass for Anydesk"

Re: Failed to update content package

Re: Solution for "SSL decryption bypass for Anydesk"

Unlock your full community experience!

Resolved! How many users can a account connect into global protect?

Resolved! Contact a Sales Engineer

Resolved! How To Export Users From A Security Rule?

Resolved! Is there a way to tie the Cert auth to AD username for AD auth?

Resolved! Use proxy only on certain URL's

Resolved! Emergency FTP on a Friday Night

Resolved! Latest content updates failing?

Resolved! PA-200 Initial Configuration from console only