Hello,
I have defined a rule that allow pings (using the "ping" application). However there are a lots of other applications that flows through this rule, even "web-browsing" !!!
How is this possible ?
Regards,
Laurent
Hi,
after PA-500 upgrade (from 4.1.7 to 4.1.9) I solved SSL problem with Chrome but now I have a problem with firefox opening SSL pages (when they was decrypted by the firewall).
For example opening https://www.google.com I receive this error:
"SSL ha r
...
I understand that VLAN tag translation is not available on virtual-wire interfaces, can someone tell me whether this is on any road map and likely to be included in a future release of PANOS? It's something that I require for a proposed PAN deploymen
...
Hello,
I experienced an issue with 'application blocking page' for https traffic through web proxy.
The firewall is configured to decrypt the HTTPS traffic.
Layout : Client -- Palo Alto FW -- Web proxy (Squid)
If the traffic (https session like https://w
...
Hi.
I've got LDAP authentication configured to allow users into a Global protect portal. I'm 100% sure it works OK, because I can authenticate against it.
Trouble is, I *can't* get it to authenticate against an Active Directory group. if I add individu
...
Being smart we thought it best to use a wildcard cert as we were going to be setting up about a half dozen SSL certs and various domains, that seem to be ever expanding.
One place we wish to use is on our PAN device for VPN access.
but as i go to impor
...
Hi All
I have a u turn nat rule and security policy in place that has been working fine to allow internal access to the external url of our exchange owa and now it has stopped working - nothing has changed on the firewalls or on the exchange system th
...
Hi all,
I get some warning message as below, is there anybody meeting such messages?
What does it mean?
Nov 08 15:08:57 Warning: pan_fpga_alloc_dfa_partition(pan_fpga_handler.c:909): no fpga memory for dfa, subtype 2 size 180
Nov 08 15:08:57 Warning: pan
...
We currently use our PAN in quite a dumb way where most internet access for end users is controlled by a single rule at the top of our rule set which simply allows https/https as outbound services, we don't block/allow specific applications but we do
...
We've configured the PA500 to accept IPAD connections using IPSEC, but is there a way to detect the fact that an Ipad is connected using HIP rules? We would like to only allow traffic to certain systems.
Version PA OS = 4.1.4
Hello,
Converting from BlueCoat ProxySG's to PAN URL Filtering... Within a BlueCoat environment when you "coach" a user... you can have the Bluecoat use a cookie to tell when next to "coach" the user. This can be cleared by deleting cookies...
C
...
Hello all,
I have a question if Destination NAT with PBF is supported.
I have two site A and B. All internet bound traffic is supposed to go out site A. Site B sends its traffic over a VPN tunnel to site A due to a default route. There are however some
...
I would like to know if it is wise and even possible to setup two gateways and portals on the same PA500 with different Ip addresses?
For the external contractors and internal technical people I would like to use the Split tunneling option but for all
...
Hi everybody.
Up to now, I've had working a Globalprotect configuration, with only a Server Certificate, and it worked very well.
After upgrading to version 1.1.7, I've received the message: "The paloalto.xxxxx.es certificate is not signed by a trusted
...
Hello,
What is the maximu number of custom url category on a PAN device?
Regard's
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
| Subject | Likes |
|---|---|
| 5 Likes | |
| 4 Likes | |
| 3 Likes | |
| 3 Likes | |
| 3 Likes |
| User | Likes Count |
|---|---|
| 10 | |
| 7 | |
| 7 | |
| 5 | |
| 5 |
