We have a PA5020 and recently enabled IPv6 throughout our network. We have been experiencing extremely slow internet connections and timeouts until we removed IPv6 from the inside and outside PA box Ethernet interfaces. Our ISP is Comcast and we have
...
Hi,
In my struggle to switch my captive portal rules on and off I want to run a script to achieve this. I use a .bat file containing the following line:
c:\test\plink.exe -ssh 192.168.100.2 -l admin -pw mypassword -m c:\test\enable.txt
The file enable.
...
Hi everyone,
I'm having a bit of trouble configuring link aggregation between my PA-5050 and Juniper EX4500 switches over 10G interfaces. The problem seems to stem from the fact that the PA-5050 link-aggregation dialog gives two options for link spee
...
I am in the process of building an Internet Gateway policy and need to review the 1,791 applications and make a decision to allow or block each application.
It would be really great if the application information was in an .xls (Category) (Subcategory
...
Hello all,
I've checked all docs and guides and did not find any documented limitations (such as features not available) when PA is deployed in virtual wire mode. Does this mean that ALL possible features are available both in routed and VWire mode?
Fo
...
Maybe my thought process is wrong so I am hoping somebody can set me straight. I have a few non-standard ports that need to be opened on the firewall. They don't belong to any application so I need to allow the ports. What I have done is created cust
...
Hello,
Is there a way to block a specific IP address if you detect multiple threats coming from this IP? For example block an IP address after the detection of 5 threats coming from this IP within 1 minute.
I know you can block an IP but only as an ac
...
Hi
I'm using Symantec BackupExec 2010 sp3 software. I trye'd to make strict security rules, so security rule that allowing traffic between BE server and servers in DMZ allowing only traffic for backupexec aplications with aplication defaults services.
...
I have a firewall setup as a gateway/portal allowing users GlobalProtect client to prelogin and/or automatically log in when not on the corporate network. This is in the early testing stages and what I am noticing is the following. If I am on the i
...
We currently use Radius to resolve user logins with IPs and computer names on the firewall but I cannot resolve the BYOD user names. Since thos are resolved in clearpass is there a way I can leverage Palo Alto to use ClearPass authentication to con
...
Hi All,
I have 2 URL Filtering Profiles. One profile has the location as "Shared" and the other has "Predefined".
When I try to clone these profiles using the PAN GUI, I get an alert saying
Do you want 2 cloned URL Filtering Profile objects to be shared
...
Hey all,
I am using multiple PBF rules and am 100% sure that nearly half of them have been hit after the last reboot. However, when I select "Highlight unused rules", it highlights all my rules..
Anyone else seeing this?
Kind regards,
Bob
I have several countries blocked in our firewall but due to business reasons I need to allow one website from one of those countries. I added a custom URL category and added the site. I then created a URL filtering profile and added that category to
...
Hi,
is it possible to assign a QoS Profile to a L3 Subinterface? In my configuration on 5.0.2 there is the possibility only to physical interfaces.
Best regards,
Robert
Hello,
My client want to create multiple vpc connection's through the PA.
As I understand the problem with the VPC that every connection must be with individual ip address at the PA side.
Also my client can use only one interface.
We tried sub-interface
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
| Subject | Likes |
|---|---|
| 5 Likes | |
| 4 Likes | |
| 3 Likes | |
| 3 Likes | |
| 3 Likes |
| User | Likes Count |
|---|---|
| 10 | |
| 7 | |
| 7 | |
| 5 | |
| 5 |
