If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
Does anyone know if there is a way to see what traffic, or if traffic, is hitting decryption policies for Prisma traffic? I have some policies I would like to clean up if I can, but unlike security policies, I can't seem to filter traffic that may be
...
I am looking for creative ways to get my VM-300 instances to syslog directly into an S3 bucket for pickup by our logging systems.
Given the PAN only has the ability to send syslog TCP to an endpoint I am not sure this is possible without some middlew
...
I have a new Palo Alto 820 and my Radius server is a Juniper running 9.1 . At this time my Cisco and other device use a share key to Authenticate to the Juniper device. On the Palo 820 Pan os 9.1.4 it want me to use the following Auth methods "PEAP
...
Hi,
Does anyone know if there is a limit to the number of address-objects in an address-group-object?
My company has been using SonicWall for the last 7 years or so, and we're currently on a NSA 3600 (NGFW) HA pair for main branch and a TZ500 for a small remote office. The TZ500 is totally fine and the 3600 works ok for the most part but there are al
...
Hello,
After enabling SSL Decryption, we cannot download from Windows store. Getting error below.
Tried excluding hostname with Microsoft but no luck. How to fix this issue?
Thanks in advance.
Team,
Any one aware if we can even use the Panaroma a a central manager for the Cisco AnyConnect firewall?
My use cases are:
1. Central management and to push policies to the Cisco AnyConnect.
2. Ensure policies are in sync and same across all AnyConne
...
Hi all,
I have a FW with PanOS 9.1.7 that is causing PXE boot issues with TFTP protocol.
When traffic is not routed through the firewall it all works and I have seen several threads about this problem but no solution.
DHCP server: Windows Server 2012 R
...
One of the more useful features in troubleshooting on the PIX/ASA (which we used until recently) is the packet tracer, which allows us to enter source/destination IP/port, etc and check to see if a given connection is allowed or blocked, and by which
...
Do I need license to test Azure HA scenario. I am following all the steps but HA1 doesn't come up.
I don't have any licenses. And doing a test run of implementation as HA active/passive.
Default 10.0 gets installed with BYOL, but we don't have license
...
I'm excited to finally have pre-login working per the logs below. But after the successful certificate based pre-login,
portal-getconfig fails. On the pan the error message is "Failed to get client configuration". Any advise on how to troubleshoot th
...
We have had SSL decryption configured since we deployed Palo Alto firewalls and it works with little issue on our Windows OS platforms. We have a new project to deploy a few MacOS clients as the application development team requires the ability to te
...
Hi everyone
I would like to prepare the certification PCNSA.
My idea is to pay the tax exam as soon as posible will make force me to study the exam. I would like to know how many hours and time will need for I am going to the exam.
Regards
Hello,
we have 2 ISPs . .
Static route with metric 10 for the 1st one and another static route with metric 20 for the second one .
We have 2 nat rules for LAN. 1st one is via ISP1 and 2nd is via ISP2.
So when we change the default route we need to reor
...
on:
Palo Alto OSPF Graceful Restart
on:
Allowing PIA VPN in home network
