We are planning to set up HA in Active Active mode. The boxes sit in separate locations with Layer 2 network between them. Currently our guest Network site on our second PA-2020 with our LAN on the first. Wer had to put the guest Network on second
...
Hi,
in what situations should we use user-id agent as Ldap Proxy ? And when we select this function, how agent behaves?
I'm seeing a lot of strange user mappings in version 4.1.6-5. I have a single user who is showing up on around 70 IP addresses. There are other users showing up on many IP addresses.
When I search the User-ID Agent logs, it says it is getting this
...
Hi,
I've deployed two standalone firewalls...i.e., non-HA. And have been using the interface comment field to document the switch port that interface is connected to. I'm now building an active/passive cluster and noticed that when I sync the config
...
I am new to the PaloAlto world, and admittedly somewhat overwhelmed at the moment. I am working with the reporting features and not getting even close to the results I expect. Particularly when I run a "User Activity Report", I get a 5 page PDF and a
...
The HA documentation states that one should start with a 'clean slate' when implementing HA. I currently have one PA-500 in production on 4.1.4 and another PA-500 as a cold spare. The production PA-500 has 2 unused traffic ports that can be used for
...
is there a way to fined the top bandwidth usage in PA 4.1.x in the exact moment that i need , because usually i have to wait for 15 minutes to get it from the ACC.bandwidth
Hi All,
We don't buy URL License on our PA-2020 with PANOS 4.1.8, but we receive many url update failure message on PA-2020. Is there any way disabling url update?
Thanks.
Joy,
During a routine test, we found out if failed attempt login with the admin name as root via ssh or console will not record to system log, but failedd attempt login with other name via ssh or console will record to system log.
I tried this feature in and it looks good in edit mode but when I post the message the second and third quoting gets, well, not as good as the first one.
Anyone with ideas of why and what am I doing wrong?
Lets say you configure a rule with:
Application = Any
Service = Custom Service (TCP port 12345)
Now when the AppID engine cannot match anything I guess it classifies the traffic as "unknown-tcp".
Will the traffic be allowed (because unknown-tcp is part o
...
Hi,
Want to know how others are using zone protection profile setting if you are using shared gateway and multiple vsys's.
Thanks,
Ernest
What's everyone using to deploy GP client? We're finding that because the GP client is not populated with any information(when downloading it from our PA firewall) it's causing problems with the MDT process. The MDT process stops as the GP client pop
...
I have users locked out and yet when I go to Device > Authentication Profile is how this error in the Locked Users column "Error in getting locked users". What is cause and how do I fix it?
This has now come up fairly often.
System PA-2020 with 4.0.4
...
We have a customer who is running a specific thick application that requires the user to have the same IP address every time they attempt to authenticate to their servers. In the office this is not an issue since we can assign them a static IP and th
...| User | Count |
|---|---|
| 6 | |
| 5 | |
| 4 | |
| 3 | |
| 2 |
BPry
on:
Palo blocks on login step
SteveCantwell
on:
problem to folder pancfg
TomYoung
on:
way to block custom ip address and network address in Palo Alto
SteveCantwell
on:
GlobalProtect Machine account exists with device serial number config
aleksandar.asta| Subject | Likes |
|---|---|
| 3 Likes | |
| 3 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 16 | |
| 11 | |
| 10 | |
| 7 | |
| 7 |
