I am attempting to configure Global Protect to authenticate with our LDAP server. We are an all Linux shop and we are using LDAP 389, which is very similar to OpenLDAP (this is what I was told anyway, I am not much a server guy and don't manage this
...
Hi,
is it possible to use a PAloalto firewall not to keep sessions and works like a non stateful Access Control device.
Thanks.
Hi All,
I have a Global Protect access question for group. I have given access rights to a VPN user group and assigned the AD membership that almost all of our staff is a member of to it and its been working well. Now I need to add a second AD securit
...
Hi,
is there an option to Set the vsys (not Firewall or zone) to Reject non-Syn First Packet?
Hi,
I'm relatively new to PA firewalls, so please forgive me if this is not explained well.
I have a PA-500 with PANOS 5.0.0. Im using three interfaces at present - e1/1 - internal network, e1/2 - Internet untrust, e1/3 internet untrust (private ip 169
...
hey
we have a situation the loggen in users are sent to the captive portal. event a few minutes or an hour after they have logged in to the conuter.
1) when this is happaning then the ip-user mapping shows no user for the IP
2) we cant simulate this beh
...
unable to commit please help in troubleshooting
PA version: 5.0.3
thanks
admin@PA# commit force
..........................
Management server failed to send phase 1 to client authd
Commit failed
[edit]
admin@PA# run tail mp-log authd.log
Jul 11 17:33:53 pan_au
...
We are using a PA-200 for our test network and have DHCP configured on the FW. We have test devices that generate a new MAC address everytime it reboots.. so our scope is out of address. Is there a way to clear all current IP's and start fresh?
We're thinking about enabling user-id agent and captive portal to more closely monitor and segment our user permissions. I'd like to know, however, if there is a document somewhere that details what information is captured and logged regarding userna
...
Has anyone done a large changeover of external IP addresses over time instead of doing hard cutover?
I'm trying to figure out how to best go about doing so gradually instead of doing a hard cutover.
I want to predifine the portal url and login user information with the setup of the global protect agent?
anyone did'it, if yes how?
Hi,
When there is no log related to a date range we can take a report for tht range from traffic summary but not traffic(detailed).it is normal for detailed since there is no log.So how can we take report summary for that range.
Why is that ?
Greetings,
Currently, we have a project underway to extend our internet redundancy. We have a pair of 5050's that have 3 Vsys at our main DC and a pair of 5050's which currently had two identical Vsys (the 3rd Vsys is irrelevant in this case and will
...
Hi,
I have a PA-200 with PANOS 4.1.13.
After some changes in configuration and after a commit, I lost connection to the management interface and now it is impossible to connect by web GUI.
Only SSH CLI is running. How can I check by CLI what happened ?
...
Hi all,
Even I do not choose this function I can use layer2 vlan interface's as layer3.I could not understand what does "layer3 forwarding" function really do .Can someone explain this ?
Thanks.
Raido_Rattameis
OtakarKlier
on:
Unable to ping website, getting this site can't be reached
BPry
on:
PCNSE certification, how to get an online training fully covering all the possible questions
reaper
on:
What does ch mean in PA-VM-OS Software?
| Subject | Likes |
|---|---|
| 5 Likes | |
| 4 Likes | |
| 3 Likes | |
| 3 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 10 | |
| 7 | |
| 7 | |
| 5 | |
| 5 |
