I have to know PA-220 & PA-820 device End of life support details
I am currenlty doing a proof-of-concept test for the Credential Theft Protection feature. SSL decryption is configured and working. I can get the system to re-direct to the Anti Phishing Continue Page. However, that page uses the SSL cert associated with the Management SSL/TLS Service Profile. The browser will show the URL block page as https://...
Hi, so i have a panorama vm on 10.1.10-h2 managing 4 NGFWs on VMs in azure. need to install device certs. in CSP i did the OTP and install for the panorama first and this went to plan. cert installed and happy. then I did the OTP process for the managed devices, i went into 'panorama/managed devices/summary' and select the FWs, then generate OTP...
Hello all, I checked the throughput information of CLI > show system statistics session as part of a way to check real-time traffic volume in Paloalto during migration work.There was an inquiry from the customer about exactly what the throughput figure identified through the Paloalto command means.When you send 30 Mbps from a third-party netw...
Model PA-3220 Software Version 10.2.8 Qualys scanner reporting OpenSSH Authentication Bypass Vulnerability Customers are advised to upgrade to OpenSSH 9.6p1 or later to remediate this vulnerability. Patch Is this a true issue or false positive?
With all the recent certificate update requests over the past couple months, the documents have become a bit confusing. Previously the below article stated version 10.1.11-h4 was a fix but now the article (updated 2/22/24) says version 10.1.11-h5 is the fix. I recently upgraded our 820 and 3220 firewalls to 10.1.11-h4 and now I'm showing the r...
I have a network that I want to allow MS product activation to work but web browsing and other internet activity to be denied.I have two main security policies that apply just to this network although DNS and ntp is also allowed:The first one is an application filter that allows all applications you get when you click on "software-updates". And...
I want to establish a 600Mb egress rate limit on a specific interface. Is this the correct procedure to implement and enforce the policy? Since I'm new to setting up QoS on Palo Alto devices, I would appreciate some guidance. Additionally, I'm curious if applying this QoS change will cause any service downtime. In Cisco systems, applying a servi...
VPN Global Protect Portal - two VR and one VR environments Hello, good afternoon. As always, thanks for the help, the support, your time and collaboration always. I tell you I have the following case, which has me very restless, since I always try to understand what and why of what I implement and configure, I do not like to leave things tha...
Say I want to connect this port to a switch downstream (trunk), with clients hanging off of switch on access ports and use vlan interfaces for routing. Switch is set to trunk allowing relevant vlans, the firewall interface is subinterfaced (layer2) with the respective tag and vlan assigned. This is not working. DHCP does not work at all. Can som...
Hi Team,We have PA self signed certificate in the firewall being used for SSL Decryption, the certificate is about to expireFrom GUI we can able to renew for another one year but our concernWill it automatically replace the existing certificate in end machineOr do we need to push the new certificate to end machines to take effectOr no action req...
we want to block only video calls only from the application whats app, skype, IMO etc. Is there any way to acheive it?
Hi Team, We are currently running 6.0.5 GP client version, now we are planning to upgrade the version in Prisma. May i know which version is the best version as we faced few issues in 6.2.0 for different customer not sure which is the better version to go with. As the Release notes doesn't give much info on Bugs. Regards, Sanjay S
Hi, I would like to create a laboratory. Where I will use Palo Alto (PA-3050). Is there any possibility to create something like a virtual machine for 10 users from this one PA? I would like 10 people to use this one at the same time. If anyone knows what is the solution to my problem, I would like to ask for an answer and to write how to do it,...
HI Folks, Getting below alret from the panorama. FW: PAN-M-600-Secondary - SYSTEM ALERT : high : Delete Cert '4aba874e-912d-4967-993e-b3c24058f841 Kindly help me to know what we have to do for this high alert.Please note you are posting a public message where community members and experts can provide assistance. Sharing private information...
