Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
I realize this sort of question is difficult to answer but here goes.
I am working on setting up our PA500 and am curious how others are setting their rules. As an example: there are three groups of users as defined in active directory: A, B, and C
...
Hi All,
I wonder if anyone is facing this issue... If you enable web-based-email inside ssl decryption rules, it will also block user to access both msn live messenger and yahoo messenger (this does not happen to skype of course). Even though, the exi
...
I've heard customers express concerns about what happens to a file once it has been uploaded to Wildfire. If the file were the product of a spearfishing attack, it could potentially contain information about the victim that may be sensitive in natur
...
I've been asked to run a report on the web usage of a specific department and I happily generated a report of users from that dept in order of how much data they have used. Then the department head asked for it to be broken down so that for each user
...
hi I had a working VPN tunnel and t was working for more than 100days then all of a sudden it stopped working
and the rrrors i am getting is
IKE phase-1 SA is deleted SA: MY-IP ADDRESS [500]-REMOTEIP_ADDRESS[500] cookie:ea25f2fa99b81f69:000000000000000
...
Hi
Mgmt cpu was reached to 100% during a hour.
i was look into a reason that why cpu usage hit a peak.
processor named webapp3 was high usage during cpu reached to 100%. (it was almost 95%)
i don't know what is the role of this processor.
Please let me k
We have 1 PA-500 which we recently upgraded from 4.0.5 to 4.1.4.
On 4.0.5 we used the NetConnect client for several users without any problem.
Now we upgraded to 4.1.4 we need to use the GlobalConnect client.
So I downloaded and activated the 1.1.4 clie
My second PA says it use 302-1357.
But It acctually says it have 304-1366:
Both my PA's say they have 304-1366 installed under "Device > Dynamic Updates"
But on my dashboard they say its missmatch...
Any one know what i should do? Everything works fine b
...
PAN OS 4.1.1. Looking in my traffic logs and then clicking on the magnifying glass to examine the details of an entry. The log details window opens and spins and spins and spins... never populates. No change no matter which traffic entry I click on
...
Hi,
I get above machine when i try to commit. Os version is 4.1.3. Do i have to enable the user-identification on untrust interface?
Please advice
Thanks
Asanka
Hi I'm configuring a new PA-500 and have it working for source NAT going from Tusted to Internet. Now I want to create a destination NAT rule to allow traffic in to a web server located on the trusted net. I have created a rule almost exactly as it s
...
Is it possible to use the User-ID Agent to scan the logs from a machine configured as an Event Collector. I have an event log called "Forwarded Events" which holds centralised logon/logoff events for another tool. It would be good to leverage that
...
Hi guys.
I have a doubt .
When i configure my Kerberos on my server profile , i can`t make group mapping settings to catch my users from AD and make a Policy for them ?
My PAN OS is 4.1.0
In other versions it`s possible to do with Kerberos OR i need to
...
A client has set up two syslog servers as destinations on one syslog server profile, but only one of the servers is receiving data. Is that expected behavior on 4.1.3? The hope was to be able to send syslog traffic to both devices.
Thanks
James
Is there any way to statically assign a Username (ID) to an IP address on the PA? I have a very small install with no AD. There are two computers that I would like to run User Activity Reports on, but they can only be run against a User and not aga
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
