General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 22052 Views
  • 43 replies
  • 32 Likes

How to log out-of-state dropped packets ?

Hi,Last week we've replaced an FWSM cluster with a PA-5050 cluster. After the migration there were intermittent problems with our CRM application. Allthough we had no used applications but only services in our security policy, the PAN was applying th...

ISP redundancy issues

Hello and thanks in advance for any help.I have a PAN 500 that has been doing great. We added a second ISP and used the "PANOS 3.1 ISP REDUNDANCY using Policy Based Forwarding" to setup teh second ISP and this works well (servers go out the 'routed r...

u7483 by Not applicable
  • 1076 Views
  • 1 replies
  • 0 Likes

Replace IPs with Objects

I have several customer vsys that have nats and policies with IPs already in them. Is there a way to automatically change those to objects that I created after the fact? Or do I have to manually go through each one and fix it? Thanks!,

SSL-VPN with Active Directory auth

Hello,I'm trying to configure SSL-VPN with Active Directory authentication.I'm running PANOS 4.0.4, and SSL-Client 1.3.0 and 1.3.1.I've configured the following:1. An Server Profile with type Active Directoy2. An Authentication Profile with LDAP auth...

convex by Not applicable
  • 3558 Views
  • 9 replies
  • 0 Likes

Appstore and itunes on iOS

Hi all, I have a problem with iTunes/AppStore on my PaloAlto firewall. We have a default rule for surfing with URL filtering applied (including online-music category). Every time I try to connect with a iOS device to AppStore the traffic is denied be...

Allowing Microsoft and Java Updates

I'm trying to allow downloads of .exe and PE files for updates but continue to block users from downloading those file types from other sources. Not sure what the best way to do this is.If I build a file filter with 3 rules like:1. allow application ...

Resolved! Web filtering only license/Idle time outs.

I have 2 PA-500 inline for web filtering only. We are having an idle timeout problem with none url traffic and have determined the issue is with the PA's. I have seen posts on this issue that relate to firewall functionality that I am not using. Does...

rthimble by Not applicable
  • 632 Views
  • 3 replies
  • 0 Likes

SSL VPN Security

All,I have the SSL VPN setup and working. All my remote users have access to the internal resources they need. The time has now come to add a vendor to access their specific internal server. So, I will create an user on the PA in the Local DB and con...

tohoken by Not applicable
  • 512 Views
  • 1 replies
  • 0 Likes

URL Logs to Panorama

Is it possible to forward URL fliter logs to Panorama?Panorama version 4.0.5PAN firewall version 4.0.5We are seeing the URL categories in the ACC but no logs.

jcostello by L4 Transporter
  • 907 Views
  • 2 replies
  • 0 Likes

QOS Interfaces

Hi,I was wondering if anyone can tell me if there is a limit to the number of 'Clear Text Traffic - to QOS Profile' mappings you can create under the advanced options within a new QOS Interface? PANOS 4.0.2.I want to setup a couple of QOS profiles, t...

brownn by L0 Member
  • 1709 Views
  • 6 replies
  • 0 Likes

HA - Link Monitoring

Hi,I´m testing the HA configuration of our firewalls and experience unexpected behavior.If both HA members experience link down errors, we want the appliance with the most active links to be active.In the "PAN-OS HA - Understanding PAN-OS HA states, ...

asieber by Not applicable
  • 2067 Views
  • 4 replies
  • 0 Likes

Applipedia - search by port number?

Does anyone know if it's possible to search for an application by port number instead of name, to see if you can find a match?I have some connections using an application that shows a known - and recognised - PORT number when I run a packet capture, ...

dagibbs by L4 Transporter
  • 904 Views
  • 3 replies
  • 0 Likes

FTP over HTTP

Hello,I need to block FTP communication - however, I do not want to block downloads that come through a browser - which can utilizes FTP over HTTP. Would this configuration theoretically work? Curious if anyone has made that work - before I get into ...

CRHC by L4 Transporter
  • 2363 Views
  • 8 replies
  • 0 Likes

Reporting for management..

I'm having some troubles coming up with a clean report that will tell my employer the highest number of concurrent users on the PAN each day... Anybody write one? Trying to filter out the nonsense seems to be the problem. I just need to see "at X PM ...

kazjak by Not applicable
  • 530 Views
  • 1 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors