Background:
I've been doing some testing with a pair of A/A PA-500's and decided to enable jumbo frames on a file server. I understand that the PA-500 does not support jumbo frames but when I begin a file transfer, it works, running at about 5,017 Kb
...
We run Qualys scans on the internal network, and it's picking up that the PA's are running OpenSSH ver 5.2. I receive the following warning:
OpenSSH, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol. This
...
Hello,
We've been having an issue in our environment where we need to reset the dataplane because randomly packets will traverse our rules and start getting denied. We aren't sure why this is happening or what's causing it. What I'd like to know is if
...
If there is a security policy applied from just "untrust to trust" permitting SSH traffic .. this rule will be bidirectional??? or i would need to create other rule from trus to trust permitting SSH???
Its the same with NAT rules???
thanks
In my testing of the GlobalProtect client (I'm using the latest stable, 1.2.1), I noticed that if for any reason the connection to the GP portal or gateway times out (e.g. the user's laptop isn't connected to the Internet, doesn't have the correct IP
...
Hi,
I set up an SSL based custom application for a specific web application in the company.
I followed this document :
But when I look at the traffic logs, for every connection to this application I have :
- 1 log that shows traffic as "ssl" application
...
Hello
I'm trying to find out what the following two counters are all about and if our rate/count for these counters are anything to worry about regarding Data plane performance issues with our PA2050 Active-Active platform.
NameCategorySeverityAspect...
We have setup Global protect and are able to connect to our network.
Once we add a HIPS profile all the traffic gets denied. The only setting in the HIPS profile is the OS is microsoft.
We are currently using Software version 5.0.6 and global protect 1
...
Hi,
I have a PA2050 v(4.0.11) and PAN-Agent for ldap users and groups. I have created a a group in my Active directotory and i configure a policy for this group but i try to check this policy with one user in this group and firewall dont let me passtr
...
Hi team,
I have got issue when trying to commit our configuration on User-id agent.
User-id agent can not to connect AD without commit.
Who have an experience of this, please help.
BR
Whats the maximum latency allowed for HA peering links (e.g HA1 control and HA2 keep-alive) between devices setup in active/passive HA pair?
i.e based on the latency can determine the approximate distance that HA pairs can be physically separated.. 1K
...
Hello,
I have one vpn configuration question, I hope somebody can help...
I am configuring vpn site-to-site in my site PaloAlto, other site is not important in this case.
I am making source and destination NAT for the traffic that is used for vpn. The p
...
Hello
I have about 100 polices on my device, some of them has "Log at Session Start" option enabled. Is it posisible to find it from the CLI ?
I have very little skills in CLI so please give me the whole CLI command.
I realised that my weekly reports ar
...
Hi all,
I am running Panorama with two PA-5020s which belong to one device group. The policy for this group applies to both or either firewalls, depending on zones (basically, this is a non-HA pair on two Internet links). One of the 5020s has gone int
...| User | Count |
|---|---|
| 6 | |
| 5 | |
| 3 | |
| 3 | |
| 2 |
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
OtakarKlier
on:
Palo HA with LACP to Cisco Stack Switch
aleksandar.asta| Subject | Likes |
|---|---|
| 3 Likes | |
| 3 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 14 | |
| 9 | |
| 8 | |
| 7 | |
| 7 |
