Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
We are using Windows-Based User-ID Agent for User Mapping. But For last few days, for some users Paloalto FW shows U-ID mapping as below instead of actual username. If anyone can explain this behavior it would be appreciated.
Hello,
We have a connection with our Business Partner. This BGP over IPSEC Tunnel. We have configured an IPSEC Tunnel and then a BGP Peering over the tunnel. We are sending our DNAT IP range (Public) to them by configuring export routes. They are re
...
Hello,
Does PCNSE certification available for panos 10 also or currently it is for version 9.x only?
I am planning for the certification so need help.
Hi,
I have an IPSec tunnel up and running with no issues using a staic IP for the peer in the IKE gateway, but it won't work when I set it to Dynamic and use the FQDN (hostname).
When I ping from the command line it translates to the correct IP, an
...
Dear Team,
We have a fresh install of Panorama and we are using Panorama mode.
after that, I tried to link 12 disks of 2TB capacity, but only 11 disks are linked.
One disc that is not linked is displayed as shown below.
Name : sdb
State : Pres
Nessus scanning is picking up TCP/443 TLS v1.0 and v1.1 on our WildFire (WF-500) appliances.
Is there a way to turn off TLS v1.0 and v1.1 on the WildFire ?
Below is the Nessus scanner notification.
-------------------------------------------------
Hello all,
If the firewall loses LDAP integration, how long does the firewall have cache for USER information?
Thanks,
Team,
Can anyone please explain SIMPLY to me what the "No Direct access to Local Network " under Global Protect actually does and mostly when are supposed to use it?
This is so confusing to me. I know there is a KB for this but the KB seems to con
...
hello everyone,
Firewall is showing session end reason as 'Threat' in traffic logs for the traffic blocked under url filtering profile. this is showing repeatedly, i'm afraid is consuming the Data Plane CPU. IT could be the action of blocking or
...
About a month ago, I upgraded PAN-OS on our main PA-3050 HA cluster from 7.0.8 to 7.1.8. This also required an update of the User ID Agent I had installed on a Windows 2012 R2 server from a 6.0.x version to a 7.0.x version; I upgraded to version 7.0
...
Hi Everyone,
I want know how we can check which decryption rule is being used for a particular traffic.
Thanks
Virender
Good Morning,
I am currently working with a PA 3220 firewall that has no licenses. Does App-ID work right out of the box without a license? On security policies I see under the ‘apps seen’ column it is identifying apps. If you use the apps found unde
...
Hello Everyone,
Need to put my PA220s in active-active mode, I know they do not come with a HSCI port, can I use a normal Gigabit interface for my HA3 interface and just set them to HA?
Should I be worried about any stability or performance issue
...
Hi Team,
I am getting below error while try to connect to GP.
When I am try to connect to the portal getting this error, any suggestions? before it was showing continue but not it is not showing.
Usually it will give the option to proceed
...
Hello, I am hoping someone here may be able to guide me. My company is using Xsoar, and we are having an issue with resolving DNS alias for it. The servers resolve to an AWS url. Half the time it resolves the other half it does not. Even support.palo
...
Raido_Rattameis
TomYoung
on:
Confused about QoS on Palo, need some assistance.
TomYoung
on:
Static Port Address Translation question
TomYoung
on:
what is the cli command for checking last failover
