Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello All,
I am wondering if it is possible to add a second IP to a tunnel interface. I want to add some extra IPs to a tunnel interface (/28 subnet). To allow a remote party to connect to some servers in our internal network using NAT over IPsec tunn
...
Hello,
I understand the main purpose of the continue action, and the additional level of effort the end user must take to ensure they intended to download a specific file. Can anyone verify that the continue feature works if someone was trying to upl
...
I have worked with many different types of firewalls, but this is my first time with the Palo Alto 5050. Currently I have a basic configuration, a single internet connection and a VR with a default route, properly addressed interface, policy that all
...
Hi all!
Going through the documentation and forums, it doesn't seem the current Palo Alto PAN-OS support public key site-to-site IPSec VPNs. That is to say, there's no support for certificate-based IPSec VPNs like the Cisco ASA has.
Are there any plans
...
So here my problem.
I have create a new rule with a new AD group. I have added 4 users in the group, including myself.
I have open a new custom URL group there. All work fine so far.
Here my problem. I try to remove myself from the group. After app
...
We use basic global protect functionality (no global protect licenses) to connect with SSL VPN. One of user (businnes owner) must have always the same IP address when he connect via SSL VPN. How can I resolve this? In global protect configuration isn
...
Does anyone try to use the data filter function to block the keyword which sent by hotmail or outlook? I defined a policy to alert those sent by hotmail or outlook mail, I could see the event happened in data filter log but cannot see the full mail
...
Hello forum,
I am seeing traffic to a particular IP address from one computer that I know has been infected with a virus (we're busy getting rid of it). The connection is SSL and we are about to implement SSL decryption on our Palo, just not this sec
...
So I have a URL Filtering Profile and I have entered a site that I want on the allowed list (play.typeracer.com). See screen shot below:
When a user that is listed under that profile tries to go to the said site (play.typeracer.com) they get blocked.
...
Hello
I need some help with this. The other day we committed changes to our firewall due to switching back to our original server certificate that we were using temporary a TestGP certificate which was created by PA support team to test our global pro
...
Hi All,
I have two PA-2020 in Active/Passive HA. Both on same code (v4.1.4) and latest subscriptions.
The pair have been running fine for almost 12 months.
Recently, when I tried to Commit a fairly basic change on the Active node, it fails to Sync with
...
Hui
Was wondering if anyone has a POC Plan/Criteria Sheet to test PA5020 against Fortinet & Sonicwall.
Appreciate alll the help.
Thanks
Manoj
Hello,
I have installed a panorama with extended disk of 1TB and now I want just use 500 GB.
I can reduce the size of my virtual disk without reinstall the system??
thks for your help!
I want to know because when I make a change in my PA500, I get the following:
- Rule 'Accounting' shadows rule 'User'
- Rule 'Shopping Paniagua' shadows rule 'portable users'
Thank you very much
Is there any way to manually sync the LDAP Group Mapping/User Identification in Palo Alto? We have the sync interval set to 4 hours, but there are times where would would like to sync manually.
TomYoung
on:
Confused about QoS on Palo, need some assistance.
TomYoung
on:
Static Port Address Translation question
TomYoung
on:
what is the cli command for checking last failover
reaper
on:
SSL inbound inspection certificate issue
TomYoung
on:
One Global Protect Portal and Two Global Protect Gateways in One Firewall
reaper
on:
password reset for user through support.paloaltonetworks.com
