Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello,
I heard from someone in the past that control plane send ospf hello packet and data plane has routing table.
Is it correct??
OSPF issue occurred in my custom site. So I wonder it.
And what is the different between routing table and FIB?
Thanks.
Hi,
I had 2 PA's running with user-identification using the user-id-agent.
Both have the same config, running 5.0.7
I upgraded both to 5.0.9
one is working fine, the other one does not "see" the user anymore.
Tried the normal stuff: reboot, reinstall, tri
...
HI all.
My networks same the figure. ( User VPN and OSPF)
I want use WAN Tunnel is the main path. from Branch to HQ ( only use Interne Tunnel when WAN Tunnel Down).
In OSPF config I set WAN tunnel metric is smaller than Internet Tunnel but when i tracer
...
I use the command :"show user group name domain \domain users" , the response from the firewall is :"User group 'domain\domain users' does not exist or does not have members" .
The domain users is the default group for the new user, I think maybe some
...
Hi, guys
I have two Virtual Routers in a Virtual System in a 2050 Paloalto NGF version 3.1.12
I want to create a Static route in one of this Virtual Routers to send that traffic to the other Virtual Router similar like i do this in version 4.1.
In versi
...
Agentless user-id: Can it connect to only one AD or to multiple ADs at the same time?
Hi Pals,
I would like some second opinion on my observation reg. the option 'log at session start' and 'log at session end'. I have tried both options and at the same time monitor the generated traffic logs for each setting. This is my observation:
a)
...
Hi,
I am planning to use custom blocked page. So far I have got the logic of creating custom block page and using it in the policy. I would however like to know if I can somehow redirect user to custom blocked page and inform user that his/her access
...
Hi Gents,
I have a Palo Alto 5050 installed between users and my Server Farm.
I configured a security policy to allow access to the File Server, and applied a File type profile to block files such as exe, avi, and FLV.
but the file blocking doesn't work
...
Hi All,
I don't have content Filter License.
am I required to configure ssl decryption to block internet applications or file types?
shall I've a content filter license to configure ssl decryption or not?
Also I'm facing other Issues,
to open internet acc
...
Hi,
Do you know is there any documentation regarding policies security rules filtering?
I have found some strange behavior for filtering. Examples below on the screenshots are from Palo Alto testing firewall (sv 5.0.6). As it can be seen, if I use fil
...
Hi all,
we have noticed inconsistency in PAN OS 5.0.8 and 5.0.9, compared to 4.1.9, related to monitor traffic filter. In older version message box pops-up in case filter is not properly defined (i.e. if there is syntax error), which is fine and helpf
...
Hello
I knew session owner generate traffic log.
Does session setup device generated traffic log If a session is denied L4 processing before L7 processing???
Network Diagram
Router#1(Power-OFF) ------ Router#2(Power ON)
|
...
Dear,
Is it possible to use GlobalProtect with pre-logon enabled as a "Network Logon" for Windows?
This way I want to use the GlobalProtect to tunnel the domain-login request to our AD when the pc is on the road.
Ultimately we want to use this for users
...
Dear all,
I'm trying to move from my initial vWire deployment to L3 in order to get rid of my SSG5. Later on I'll also get rid of my SA-2000.
Current layout:
ISP (dynamic IP) - PA vWire - SSG5 - PA vWire - Intranet
...
TomYoung
on:
Ownership & Support Transfer?
reaper
on:
Networking
BPry
on:
Uninstalling Cortex XDR
BPry
on:
WLC -Radius Communication over Prisma SDWAN
PavelK
on:
Is PA 10.0.4 version CLI commands significantly updated?
