General Topics

"Forward" Field on External OSPF Routes

I'm having some problems getting our traffic engineering working with OSPF, and I think I've finally figured out what's happening. But I can't figure out how to stop it.

I think the problem is coming from how the PAN firewalls are importing the extern

LDAP Authentication Fails Becuase Username Has Space

Running into an issue with LDAP authentication.  I'am able to successfully login via LDAP authentication when the username does not contain a space.  However if the username contains a space (ie palo alto) the system logs show "User \'test\palo alto\

IPv6 feature list?

Is there a canonical list of IPv6 capabilities included in PAN-OS 6.0?  I have a customer asking many pointed questions and it would be useful to have one to reference.

Best,

Corey

Getting errors: Running Configuration not synchronized after retries

Hello.  I have two PA 5050's in an HA active/passive pair.  I will randomly - once a week get a message "SYSTEM ALERT : critical : HA Group 1 : Running configuration not synchronized after retries.  If I check on the dashboard-HighAvailability - I se

DR Site

I currently setting up a PA 3020 for my DR site and currently have one set up for my Main site. I exported the configuration from my main PA and am using it to set up my DR PA. Is it possible to disable the VPN tunnels on the DR site so they will be

How could I suppress the template setting push by panorama on the PAN device

How could I suppress the template setting only push by panorama on the PAN device.

the PA is out of sync from my panorama and when I try to commit the result is failed.

but I have some piece of config deployed on the PA. and I can't dellete this settin

need to configure IP-SEC VPN between 2 sites with overlapping networks problem

scenario

Site A

Any equipment IPSec firewall
internal interface: 172.16.0.1 255.255.0.0
external Interface:20.1.1.10
Internal Network: 172.0.0.0/8

VPN proxy ID

Local: 172.16.0.0/16
Remote: 192.168.98.5/32

Site B

Equipment PA-2050
internal interface: 172.22.6.24

multi virtual system could not be activated

Hi,

after i activated vsys i got messages that the backup device is suspended because of the different multi vsys config.

Management CPU of the activ device was about 30% and even after 20 minutes nothing happend. Then i did a reboot on the backup devi

Problems with User ID after upgrade from 5.0.10 to 6.0.1

After upgrading i got no match in policy rules where "source user" is in "group include list.

All traffic bypasses the rules and will match the "stealth" rule (last rule).

Had to downgrade to 5.0.10 since we have a lot of users.

Any ideas ?

P.S i never t

How to block Yik Yak?

How to block Yik Yak?

Did anyone come across Yik Yak and how to block it?

Yik Yak on the App Store on iTunes

Yik Yak - Android Apps on Google Play

Amid Bullying & Threats Of Violence, Anonymous Social App Yik Yak Shuts Off Access To U.S. Middle & High Sc

URL filtering and User ID

Hi All,

   Please I want to know is it possible to perform URL filetring and activate user ID in the case of Virtual wire deployement:

My concern is as follow:

  -Can I connect with an LDAP server (i.e: Active Directory) in virtual wire deployement mode

Security policy to allow YouTube

Hi,

I have a security policy that allow 4 application: facebook, linkedin, twitter and youtube. There is no URL filtering applied, and 3 applications work fine, but youtube does not. the traffic bypasses to another policy below that had URL filtering