Hi: My paloalto version is V4.0,3. I have seen the relase notes. this version provides to install URL database by URL file downloaded.But I can not know how to do it.
hi everybody,how can i configure the bandwith for specific applications , for specific user subnets?
Hello,after updating to 4.1.1 it seems to be that filtering applications doesnt work any more. We have several security policies, where only ssl and web-browsing is allowed, but I can open eg youtube, netviewer, flash, google-video and other aps...Here is an example where google-video is allowed, but in the security policy, there is only ssl/web...
HiI Configured RAID with 120GB and 240GB HDD.Aftar that,booted up a device with single 240GB.It seem available diskc space is 120GB.a Device recognize inserted SSD is 240GB. Do you know resize SSD to 240GB?admin@PA-5020> show system disk-space Filesystem Size Used Avail Use% Mounted on/dev/md2 3.8G 1.2G 2.5G 33% //d...
Hopefully I am wording this in such a way that it is understandable.This is pertaining to how the user-agent software works with a PAN device that has multiple virtual systems. Since I have never worked with multiple virtual systems are the user-agents specific to each virtual system or the physical device.
Hello Team ,Any tool for migration from Fortigate to Palo Alto Firewall.I want to work via command line of PA .Any link for pa 2020 and 2050 would be helpfullThanksHSharma
I know where and how to start a packet capture on the device. I would like to know if the capture can be configured to capture only specific parameters (ie src ip, dst ip, src port, dst port). I don't see those options on the web GUI.
Looking for a way to block the domain suffix of .xxx I've created a custom URL catagory with *.xxx (and I also tried *.xxx/) and that works....however It will also block a URL string with.xxx anywhere in the URL (i.e. www.google.com/news/foobar.xxxdsdfsdsld/index.htm). Does anyone know of way to block a specific domain suffix .xxx instead of ju...
For some reasons, I need to manage all logs using Panorama and the logs can not save on Pan. How can I do to config ? Or the request againsts Pan policy.
Hi,I need capture some traffic for a specific subnet ( or vlan tag) .With "debug dataplane packet-diag set filter match" I can only put a single ip's but not subnet. Neither a vlan-tag can be added in a filter.Is there any way to do this ?Tx.
Hi all,We would like to deploy 2 PAs on two different sites in an Active/active design. The two sites are 10ms far away from each other.So the first question is : Is 10ms (RTT) acceptable from a PanOS perspective to enable the HA feature ?The IP plan is not the same on each site. Is it an issue to setup HA active/active in this case ? I've read...
Need to find the field identifiers in the syslogs, some of them are pretty obvious while others are not.
Wondering how the Palo Alto detects HTTP tunneling and how would a security policy be configured to detect/prevent this situation.
I just started using PAN 2050 in production and confiuring ssl vpn. Issue is that after client computer connect to vpn, client computer loses all internet access. What makes ssl vpn to work so that client computer doesn't lose internet access locally and still access resources remotely (office reourses behind the PAN)?Thanks
HiI have a rule with some custom ports in the service tab, but how do I add ping then? - does not work if I dont have "application-default" in the service tab.Thanks
| Subject | Likes |
|---|---|
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes |
