Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
creating security policy to allow specif users to use applications web-browsing and SSL with destination any with using SSL decryption policy which decrypt all.
after this policy there is implicit deny .
the issue that palo alto cant` detect youtube ap
...
hello.... Can a User-ID Agent connect to more than one firewall?
if so, how do you set up the other ones?
After implementing HA Active/Active, we left S2S VPN tunnels alone. Ultimately no changes to IKE Gateways. The S2S terminate to a /30 address that is statically routed from the ISP to ethernet1/12 on the active-primary. Tunnel interfaces and their
...
Hi,
I have Palo Alto 3020/5020 firewalls and I would like to configure a port channel (ether channel) between these devices and a Cisco switch.
I have configured an aggregate link on the Palo and added the interfaces. I have created the Port Channel on
...
I created a rule for URL and tick the enforce safe search. When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.
I think it is hard to use in my case, which is a scho
...
I created a rule for URL and tick the enforce safe search. When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.
I think it is hard to use in my case, which is a scho
...
Hi,
Working on a Vulnerability Management project at the moment, I was trying to streamline the basic actions as much as possible. The following would be incredible if PAN would incorporate this.
A add-on for Microsoft System Center Configuration Mana
...
I received a PA-200 device for review and testing. I like to set it up besides my current firewall and see what it can filter.
Via SPAN Monitor on a Cisco switch I copy all traffic on the UNTRUST side to the PA-200. Now I get a lot of tcp-reject-non-s
...
Hi,
I have setup my device management to use the public ip. it's working fine but i want the management to be done using a different port. currently its using https(443). how can i configure this?
Please help.
Thank you.
Hi, colleagues!
I have a "Custom URL Category" and I try to add new URL from API request but if URL have ampersand(&) I have a error: <response status="error" code="18"><msg><line>Malformed Request</line></msg></response>
PanOS: 5.0.8
Original URL: exam
...
I am using agentless syslog integration for user ID and it's working but for every login event I am seeing twice as many log messages received as auth success log messages and I want to know why. Is there a way to look at the logs received by the PA
...
Hi. all
I have a question about high availability with A-P mode.
We found out critical system log in active device for HA1 connection down but not occurred split-brain. (system log : type ha / severity critical / event connect-change / description HA G
...
How can I add some sites to the list of blocked URLs that PA downloads into my PA-500? I know I can block them manually in my PA, but I feel that the PA tech support staff should know about these sites. I will give you and example that my students fo
...
Hello All,
I have a support case open with PAN but I thought I would query others smarter than I.
I'm seeing an increase of Fragroute Evasion Attack For Unknown-tcp Traffic on our ICS network. Does anyone else see this traffic, if so, do you drop it?
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
