Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi,
Does anyone know if there are any recommendations on the use of nested groupings within PA policies - specifically the PA objects?
In terms of maintaining 'easy to read' policies I wanted to make use of nesting to keep the policies simple, which wi
...
Hi,
Whene creating reports within Panorama, and whene choosing database for the report what is the diffrence between panorama database such as "panorama traffic log" and the other databases such as "traffic log".
Regards.
Hi all,
i'm setting up two PA 5020 in Active/Passive HA and I'm having some problems with Aggregate interfaces. I'm using 4 ethernet interfaces per device:
ae.1 - trust zone (two physical ethernet interfaces)
ae.2 - untrust zone (two physical ethernet i
...
We have a very strict policy for some computers that only get access to specific sites. However under this model sites such as Wellsfargo use a third party to host their content and data, which then gets blocked as well until we add it to the allow
...
Any one know how to add the ports into this firewall. I have a dmz server that I need ot add ports on the firewall to reach it.
Thanks
Frank
I'm looking at managing multiple virtual firewalls in the same physical firewall with Panorama and I am wondering if you can have two zones with the same zone name assigned to two virtual systems? I understand that all the devices in a Panorama devic
...
Hi, I've recently upgraded our PA-500 to 4.1.3 and found that this version has significantly improved over the previous 4.0.X.
But now I have few quirks that the new version brought up or didn't solve as I expected.
First, after upgradin
...
I think you guys should be able to do better than a 10 second loop of the same thing. I assume this is done to encourage people to hang up or leave a message as it slowly drives the caller insane.
Hi - we current;y have our PA4050s in aleret mode only on every rule for AV. If we device to turn this to Block for specific rules - what does this actually do if it identifies a virus? Cheers.
Greetings,
Recently upgraded to v4.1.3 and going through the process of installing the Global Protect client on the workstation. I've tried this on Win 7 32bit and 64 bit and keeps throwing corrupt file error.
Screen dump attached.
Cheers
Is it possible for the UIA to monitor a Citrix farm/ cluster security logs in order to gather the user-to-ip mappings required for the firewall. Similar to how the UIA can monitor Exchange servers security logs for the same effect.
I'm NOT refering to
...
on 4.1.3 - When doing a commit covering multiple vsys's fails, the system will not specify which vsys caused the error. Can anyone please give any advice on why it is doing this. We are doing this directly from the Firewall device directly and not fr
...
No longer able to view all my policies in the drop down, gets to the Gs and there is an italicized more that is un-selectable... Tried on both MAC, Windows, E.G. Safari, Chrome, Firefox, IE, confirmed it works in 4.1.2...
Is it possible to view and configure VPNs as a vsys admin?
It appears that the VPN configuration is only part of the device admin, however I choose this option I am unable to limit the access on a per vsys basis. Am I missing something something? If n
...
Hi
I have a HA pair of PA-5020 and a single PA-2020 connected to switchports on a Cisco Nexus 7000
I'm seeing receive errors on all the physical ports on my PA boxes but nothing on the Cisco device.
Duplex is set at auto, speed set at auto for both ends
...
PavelK
on:
Web Auth FW with HA
reaper
on:
Negate Deny Rule
BPry
on:
SFP Compartibility for HA on PA - 850
OtakarKlier
on:
Management Interface down
PavelK
on:
check Panorama Hardware reload/facing Panorama hardware reload after commit firewall policy to Palo firewall (
