Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Does someone know if it is possible to spoof/change the mac-addresses from a VM PAN 100? Our ESXI Vendor won't enable Promiscuous Mode, so we don't have data through our Ethernet ports. I guess maybe, when I can spoof the MAC address, it might be wor
...
Have a client that is interested in using 10G with the 5050 but wants to connect it with a Juniper DAC. Anybody have any experience with this or if it even works at all? Know it would probably not be supported by PA but just curious if it works.
SFP
...
Does anyone know if the maximum permitted UDP packet size follow the MTU setting? or is there a specific setting for this?
I need to understand if the PA automatically allows UDP packet sizes over 512 bytes
Thanks
Rod
Running an 2050 Active Passive HA pair.
Yesterday I noticed that I couldn't login with the Globalprotect client. After some investigation I noticed that I could log in on the Globalprotect Portal web page, but after the login the page which offers the
...
Hi,
Can anyone please help me with ospf issue iam facing.
I have attached the OSPF config of Palo Alto and downstream SRX 100 devices.
Iam unable to get the OSPF routes in Palo alto device.
Thanks
Raju
Hi There,
I am struggling to generate the CSR for a self generated certificate on a Palo firewall (this is the first time I am doing it). I did look into all the documents in the knowledge base and they seemed to be very confusing.
I have generated
...
r
Is Palo Alto able to search for an entire protocol group?
for example i can search for bittorrent, emule, etc... BUT can I search for any protocol that falls under the file sharing group?
networking > encrypted-tunnel
networking > remote-access
networki
...
Hi,
In Cisco ACLs, they have the option of adding rules like "access-list OUTSIDE extended permit icmp any any source-quench". Does Palo Alto have a way of distinquishing ICMP message types? I've tried looking in the application library, and ICMP show
...
Hello togheter,
few days ago we started to forwarding our logs from our PAs (located world wide) to Panorama.
I really like the Threat Map under the App Scope Monitor tab.
Do you know, if its possible to configuried it so, to have an overview of all PAs
...
What is the benefit of Panorama templates?
It seems like when creating a template and pushing it out to a device, it doesn't warn you when you are overwriting device configuration. For example, I have a layer 3 interface 1/10 and my template has inter
...
I can see the userid's in the agent running but they are not showing up on my logs
It seems like the freely and widely available vpnc client should work just fine with the palo alto ipsec/xauth setup, however I must be missing something. I have it working with IPAD with the shared secret + XAUTH with group/password, but with vpnc o
...
Hello,
Does anyone know if it is there any limitation about storage for logs on Panorama Virtual Appliance?
Thank you in advance for your answers,
Ainara.
Hi,
I have panoram installed and configured. I have my PA FW that is now sending traffic logs and system logs, and threat logs to the Panorama.
1. How can I configure PA FW to send URL logs to the Panorama ?? as I do not see any url logs in the panoram
...
Hi folks.
I have a situation with site-to-site VPN's on my Palo Alto's which I could use some help diagnosing.
I have a number of remote teleworkers who have a company-provided Cisco 887 router, which is used to run a site-to-site, IPSEC VPN to link in
...
reaper
on:
Tunnel Monitoring
reaper
on:
Global Protect need to ask for password all time we connect
reaper
on:
GlobalProtect Android version 13 issue
