Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Just getting started with PA, running software version 4.1.6, and I am learning how to set up a VPN to allow remote users into the protected network. We don't have a GlobalProtect license, but single-portal, single-gateway capability is included in t
...
We're in the process of labbing out and testing a pair of 5020s running PanOS 4.1. We've configured GlobalProtect per the TechNote guide, and other than one issue where we had to add a static route pointing the VPN address space at the VPN tunnel int
...
Hi,
i have configured GP for remote access, and now i want to test connectivity but the problem is when i try to connect with my web browser on https://<pub_ipaddress> i dont get download site for GP client.
One more interesting thing is that i have pu
...
Hi colleagues,
I´m just looking for a training (the 311, http://education.paloaltonetworks.com/datasheets/Advanced%20Firewall%20Troubleshooting.pdf ) but i dont find so much places (zero till now) where receive it.
Did you someone got it? Could you rec
...
Hi,
I have block many proxy/anonymiser, like ultrasurf, freegate and many mores.
But i cannot find a way to block TOR browser.
The browser/proxy client is on this site :
https://www.torproject.org/download/download-easy.html.en
Just to let you know that i
...
I have moved from a dedicated URL filter to the Palo Alto with the URL Filter add on. I now need to figure out how to create executive reports based on LDAP groups.
I have LDAP groups such as Sales, Marketing, Accounting. I need to deliever a weekl
...
Hi,
I'm getting a lot of unknown-tcp on the internal network and would like to capture some packets to get an idea what this is.
I tried:
debug dataplane packet-diag set capture trigger application from unknown-tcp to unknown-tcp
but I don't get any pack
...
I am running PanOS 4.1.7, migrating from a Checkpoint R75 platform. I have a lot of rules in place, but we are heavy into excpetions. I keep running into situations that would be very easy to handle if I simply had the Negate option.
For example, I
...
I have three active directory servers configured within the LDAP settings of my Palo Alto. I have tried using both 389 and the GC port of 3268 as per this doc: https://live.paloaltonetworks.com/docs/DOC-3120
I have two 2050's in an active/passive pai
...
I want to 'clear traffic logs'. If I go through with that will that also clear the traffic summary logs?
I would like to clear traffic logs but keep the summaries.
... reason being, im upgrading from 4.0.9 to 4.1.7 this weekend and I want to cut down u
...
I'm trying to find more details about the differences between address groups and regions.
I added some regions to get a better reporting when I include src and dst countries.
Initially I made a mistake of naming a region the same as an existing address
...
Hi, recently a famous SQL Injection has started up once more.
Will there be a vulnerability signature update which includes this new version of the Lilupophilupop SQL Injection code?
More information can be found at ISC Diary | SQL Injection Lilupophil
...
Can anyone tell me what is going on in this log? It doesn't look like the RDC brute force attacks that i see all the time
Hi all,
I have a setup with two ISP's where one is active and the other is redundant sitting in a VR. The routing and failover works fine but only if my actual link goes down on my main ISP which will pull the static route. Is there a way to do a tr
...
Hi,
We are planning to upgrade PAN 2020 series to 5020 or 5050. I am wondering if we can simply restore the backup of a 2020 on 5020 and everything should work fine. We are running software version 4.1.7. Currently we are running with active/standby
...
reaper
on:
Tunnel Monitoring
reaper
on:
Global Protect need to ask for password all time we connect
