General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 44 replies

Resolved! User Identification Agent with Active Directory

I know that PA Firewall uses MGT interface to connect to user Identification Agent, I know that most of the other services can be set to use any other interface with the "Service Route Configuration" commands.Is there any method to use any other inte...

Resolved! Websense, WCCP, ETC.

We have an ASA that has a websense connector that allows us to route websense request back to the cisco firewall. I would love to replace with your product. Does the Palo Alto have any functionality like this?

Resolved! Clear SSL Certificate cache

Hi,We have a PA-500 and I can view the SSL certificates with: "debug dataplane show ssl-cert-cn"I was told that this is the list of SSL certificates that are stored in the cache.However I'd like to know how to clear this cacheThanks

Secondary interface addresses

I'm trying to add more of the public IP addresses issued by my ISP to the external port on my PA-500. When I try to commit the config, I get this error:routed: In virtual-router Incoming: address 12.x.x.x/27 on interface ethernet1/1 has overlapping s...

bwmillslg by Not applicable
  • 4 replies

Resolved! User ID agent on Vista/Win7

Is there a timeline available for when the User ID agent will work on Windows 7? I need to plan a rollout of new PC's early next year, and I need to know if they are going to need downgrades to XP for any length of time. I know that the captive porta...

bwmillslg by Not applicable
  • 7 replies

Resolved! Captive Portal Session Timeout

You can set the Timeout value of captive portal. Default is 60 min. In my case it is 240 min.But this is the max TTL. There is a default TTL of 900 sec(15min)So when a logged on user does not create any traffic for 15 min then the user must logon aga...

u2343 by Not applicable
  • 6 replies

Best Practices for Application Policies?

I was wondering if there is a best practices document for setting up a policy to control particular applications. I've already dug through the Skype tech document which tells to enable unknown applications. Are there any other applications that work ...

nugentec by L1 Bithead
  • 19 replies

Can I check if a connection was dropped by the firewall?

I frequently have people coming to me asking if I can check if a connection is dropped on the firewall.Allow me to give you an example:We have a trunk setup between a cisco callmanager and one from Alcatel. All traffic between the 2 systems flows thr...

pieters by Not applicable
  • 1 replies

DHCP - Not setting Subnet, issues with PXE Boot

We are having an issue with our new Palo Alto 2050.We are using the DHCP server on the 2050 in conjunction with a PXE to iSCSI system.Using a different firewall/router with integrated DHCP server - the system works fine.With the 2050 - it doesn't.We ...

Resolved! Scheduling policies and continuous tcp sessions

Dear Gentlemen,Does anybody know how we can configure the policies to block a continuous TCP session when the schedule runs out?The test we are trying to do is to block a skype discussion during a scheduled time.During the 'allowed' time, we can laun...

itbrain by L0 Member
  • 3 replies
Top Solution Authors
Top Liked Authors