Packet Capture (VLAN)
How can i capture the packets for only one VLAN? I have a virtual Interface ethernet1/6.40 and if i use a filter for only the interface (ethernet1/6) the PA doesn't capture anything.
How can i capture the packets for only one VLAN? I have a virtual Interface ethernet1/6.40 and if i use a filter for only the interface (ethernet1/6) the PA doesn't capture anything.
Hey Guys,I have the Palo Alto App working for the Threat/Traffic Logs.However, I would like to do the same for the Data Filtering / URL Logs.Is this possible?Let me know if it is and how to do it.Thanks.Brian
Greetings,We have run into an issue in our deployment where SOME (really only a few) Youtube videos don't play, the user gets an error 'An error occurred, please try again later'. In the traffic logs, I see traffic that is recognized as application 'http-audio'. We have configured an application whitelist of the applications we allow from our ...
My environment has firewalls, which are being managed by the Panorama. Today I am not managing the rule sets of these firewalls from the Panorama, but I intend to do so in the near future.Is it possible to modify/create new IDS signatures and push it through the Panorama to all the firewalls??
Greetings PA community. I have a question about leveraging our PA firewalls (pair of 5020's) to log instant messaging. We're a government agency and some of our employees use instant messaging for business purposes and we MUST log these chats as part of our public records policy. Everything they do with other government agencies over this cha...
Hi, I've been looking everywhere and I can only find information on virtual wires being used for path-monitoring in HA. What I'm looking for is if when in HA, do the virtual wires fail over? If they do fail over is there a best practices document detailing how and what type of interfaces fail over? Fail over of a L3 interface makes sense since t...
I've seen a couple answers here about using Path Monitoring in Virtual Wire. They say that one must use an IP address within the Virtual Wire subnet as the source address. OK, I get that. What I don't get is how to configure such an address. I don't see a way to add an address to a vwire interface. I've tried creating a loopback with no good res...
hi!I would need some help understanding the PAN licensing model fo VPN clients. we are planning a new deployment and would like to offer our clients (Windows and iOS based) the possibility to access corporate resources. since only a very basic functionality is needed in this case (the ability to establish a SSL/IPSec session and assign a remote ...
Hello all,What is proxy-id in ipsec-vpn configuration??Why does it need??I will use ipsec-vpn on PA-2020 & PA-500.Each devices have 15 proxy-id(remote-networks).I know one tunnel interface has 10 proxy-ids.So I have tested without proxy-id that traffics are processed routing-table(next-hop tunnel interface) to 15 remote-networks.It is normal...
Hi AllI am using one PA 5050 firewall and all is working fine. Just want to know if I can rename or delete the Admin (Default) account in the box. This account is default account and is there any limitation if we delete it or rename it. If I delete it , is there anything which I will loose as far as the Administration of the box is concerned.Pl...
Hello,Can anyone tell me if there is a known list with compatible smart-card types and vendors, that can be used with Global Protect, Or if there is any known issue with any of the types or vendors.Thanks,Costin
Does anyone know how to get Bonjour to work over a GlobalProtect VPN connection?
Hi all, I have upgrade PAN-OS in v4.0.2-3, and I have no print button in ACC and Monitor (I have tested with IE8, FFox 3.6.18 & Chrome). You have an idea ? Thanks.
Does anyone know how can i upload a Sample Malware that i have for inspection to WildFire? Thanks.
New PA200 installed and working on getting it setup. Aside from a 2wk demo, I have little experience with PAN.I've got a Site-To-Site VPN configured to an ASA5505 at another of our offices.I have one zone setup for a Wifi network. (Called Wifi) IP space behind that zone is 172.168.1.0/24. Interface 1/3 is configured with the IP 172.168.1.1 PAN i...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |

