General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 17261 Views
  • 44 replies
  • 32 Likes

High CPU Usage on PANOS 3.1?

Upgraded our PA-500 to 3.1. It came back up around an hour ago and the CPU usage has been on a pretty consistent 65-66% ever since.I presume either this is normal, or not normal - how can I see what it's doing please?Also even now a couple of hours l...

Upgraded to 3.1, URL wildcards not working

Just upgraded to 3.1.0 from 3.0.6.I had the following URL filtering profile that I used on an inbound rule with SSL decryption so that people could only connect to valid Exchange/Outlook Web Access URLs:webmail.ourdomain.co.uk/favicon.icowebmail.ourd...

Resolved! URL Filtering Override SSL Certificate

I've been experimenting with the URL override feature. Works fine, however even with the PANs self-signed certs in the PC's trusted root authorities store, I can't seem to get away from getting a "mismatch" warning because when someone goes to www.ov...

Resolved! Session Browser?

Just looked at Monitor->Session Browser. This is cool! Why is it not documented anywhere? Is it new and I just missed something?

URL Filtering Profiles - Category/Action

I'm torn even asking this question, but it seems like it might be a nice feature but at the same time possibly misused. It might also be a support nightmare when people call saying they can't get to a URL.Would you consider adding a "Block-No-Log" to...

jmck9999 by L1 Bithead
  • 1324 Views
  • 1 replies
  • 0 Likes

How to create SSL Custom App-ID

I'm testing to create SSL custom signature from WebUI.However, we don't have enough materials to create that.Do you have any materials to create SSL custom signature?Or could you provide any sample config?Regards,Takeshi Kawai

Takeshi by Not applicable
  • 680 Views
  • 4 replies
  • 0 Likes

Resolved! Application = insufficient-data?

We have some outgoing UDP traffic that shows up in the traffic log with "insufficient-data" in the application field. The problem is that this traffic is being allowed through the firewall because it's being matched to a rule that allows FTP traffic ...

ahopkins by L2 Linker
  • 6390 Views
  • 7 replies
  • 0 Likes

Resolved! Wildcard/UCC SSL Certificates

Are there any issue(s) when using one of these for the reverse proxy (i.e. DMZ websites that use SSL) on the PAN please?Specifically thinking of using Digicert.

UIA / PAN Agent to Firewall Communication

Hello,Looking at the User Identification with PAN-OS 2.1 Tech Note rev00E 03/09, I can read :"The User Identification Agent must have IP connectivity to the firewall management interface.This is true even if the firewall is managed by an inline, Laye...

Virtual Wire DMZ - Help Please

Hoping for some clarification on using Virtual Wire to inspect traffic to our DMZ please.Right now the external interface of our PAN has a public IP of 1.2.3.1/24.Its default gateway is another firewall in front of it, it's internal interface has a p...

Resolved! SSL VPN- Config ERROR PAN OS 3.1

Hi,I m trying to configure SSL VPN on PAN OS 3.1 and its giving error msg even after submitting all the necessary information.My SETUP Details:-1: SSL VPN using Tunnel Interface ( Newly Created in Trust Zone)2: External Interface IP3: Created Self Si...

Unable to authenticate users on Captive Portal

Hi,We have following issue with our setup:-1: Captive Portal is set for entire network ( 192.168.1.0) and in Active Directory the group ( IT) is choosen which will be filtered or monitored. There are two users ( user1/user2) who are member of this gr...

Top Solution Authors
Top Liked Authors