I'm considering moving to the latest 4.1 release from 4.0.11, but I have a large number of SSL VPN users using the NetConnect client 1.3.2. I believe they would have to use a Global Protect client once the OS is upgraded to 4.1. What would be the b
...
So,
PAN 5.0.1
eth1/1 - Layer 3 / Internal network 10.0.0.1/24
eth1/2 - Layer 3 / External network - DHCP assigned IP adress from ISP.
Outbound NAT works. Inbound NAT i simply doesnt get to work..
Used the cli command test nat-policy-match from Untrust s
...
My ISP gave me 2 networks.
My 64 IP one (main-net) and then a 2 IP one (link-net)that connects back to the ISP Box.
I know I could make this with a simple router/ Layer3 switch.
I have just started testing with our PS-2050.
Is there a simple way to do th
...
Dears,
I have 2 PA2020 implemented working as webfilter only. (virtual wire feature)
I need to implement a rule which will permit any user to access the website www.adpweb.com.br anytime...
What I did:
Rule at first position
source: any user, any zone,
de
...
I am testing out and setting up two PA-2020 in a HA Active/Passive setup for eventual use in our production network. I am testing this outside of our current network infrastructure to ensure I understand the complete setup processes. I had a couple
...
PA200 running 5.0.1-h1, SSH traffic is being intercepted to block tunneling which is working fine so far. The issue I'm seeing is the client (Putty) is dropping the session after 60 minutes with "Server's host key did not match the signature supplie
...
Hi All,..
Kindly refer the fallowing topology, in which VLANs (ex:10 VLANs) are created and any traffic to internet is routed to the core firewall. In between core switch and firewall i have connected PaloAlto firewall in VWire mode and also have defi
...
I've a strange problem. My PA (5.0.1) randomly kills all sessions. This is causing me problems as all internet traffic times out during these issues.
You can see from the show system statistics screen dump below that there is 0 packets and 0Kbps thro
...
What is the escape character/ sequence for LF or CR/LF in cli mode?
Via web interface it is possible to create a multiline login banner with line breaks that looks like the example below.
line 1 test
line 2 login
line 3 banner
This shows up tidy during lo
...
Hi, my customer would like to insert PAN device between LAP and WLC to inspect Client A and B traffic. Can we do that ?
Is there no way to have different block pages appear per policy ? We have distint needs for a few different groups of users. We need one URL block page to come up when one policy is triggered and a different block page when another policy is triggere
...
Is there (or will there be) a vulnerability signature we can use to block exploit attempts?
Hi
In one of my customers (Pan-OS v4.0.7) with eDirectory I use User-Id Agent (v3.1.2) to get user IP addresses. In that directory I used the "Login Id Attribute Name" to specify 'CN' as the attribute to use for user account because many users didn't
...
I have built access via global protect for remote users and all is working fine except that they cannot access the internet.
1. DNS is assigned (internal)
2. All internal network resources are accessable
3. accessable routes includes 0.0.0.0/32
Any idea
...
Hi all,
I would like to know what the requirements are on HA1, HA2 and HA3 links in an active/active deployment. Is there a formula to calculate this ?
| User | Count |
|---|---|
| 6 | |
| 4 | |
| 3 | |
| 3 | |
| 2 |
BPry
on:
When logging into the community can I turn off the email a code?
BPry
on:
Cortex XDR: How to block execution of some unwanted apps
OtakarKlier
on:
Inquiries about PBF nexthop settings when the ISP is a DHCP Client
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
| Subject | Likes |
|---|---|
| 3 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 12 | |
| 9 | |
| 7 | |
| 5 | |
| 5 |
