Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi All,
I`d like to start a discussion what we can do to improve the bad mgmtplane-performance (gui, commit times etc.) on the older platforms PA-500 and PA-20xx because there are still several customers out there with these devices and for the PA-500
...
Hi Team,
unfortunately, I tried to upgrade my 2050 from 5.0.11 to 6.0.0 with no luck
I get the below error
could you please help me to solve it
Hello,
I am getting the following error when trying to commit and am not sure where to look.
Error: Need to config WMI account and password for querying Microsoft directory servers
Thanks in advance.
Bob
It is possible to debug ESP packet's in Wireshark but to do so I will need to obtain the encryption key and the authentication key for the given VPN from my Palo Alto 5050. As an example - In Linux it's possible to get this information by running the
...
What is the recommended way to connect a PA box to a windows domain?
I see know there is a radius way of doing it, and i know this is the way other like to configure it.
But there is alot more work configuring, and reconfiguring if i want to change/add
...
Hi all,
I have a client which run a stretched active/active HA cluster with a dark fiber between them. So HA1, HA2, HA3 links are not really cables, but layer2 VLANs. It seems fine, as it has somehow worked a long time, but this is what I’ve noti
...
Here you are the scenario:
- PA-500 running PANOS 4.1.7 and acting both as GP Portal and Gateway
- authentication request is forwarded to a Cisco ACS RADIUS server, i.e. PA-500 is its RADIUS client
- RAS login is the full mail address of the users, e.g.
...
I have had my PA 3020 in line for about 4 months. Can anyone suggest a report to run that we give me a good over all idea of how well the firewall is working?
Anyone got some information regarding a threat filter release for CVE-2014-0160 a.k.a Heartbleed bug in OpenSSL?
creating security policy to allow specif users to use applications web-browsing and SSL with destination any with using SSL decryption policy which decrypt all.
after this policy there is implicit deny .
the issue that palo alto cant` detect youtube ap
...
hello.... Can a User-ID Agent connect to more than one firewall?
if so, how do you set up the other ones?
After implementing HA Active/Active, we left S2S VPN tunnels alone. Ultimately no changes to IKE Gateways. The S2S terminate to a /30 address that is statically routed from the ISP to ethernet1/12 on the active-primary. Tunnel interfaces and their
...
Hi,
I have Palo Alto 3020/5020 firewalls and I would like to configure a port channel (ether channel) between these devices and a Cisco switch.
I have configured an aggregate link on the Palo and added the interfaces. I have created the Port Channel on
...
I created a rule for URL and tick the enforce safe search. When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.
I think it is hard to use in my case, which is a scho
...
I created a rule for URL and tick the enforce safe search. When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.
I think it is hard to use in my case, which is a scho
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
