Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello,
I have a FW that has many nat rules.
And I found a bug, pan-130550:
Hi All,
Have you guys seen the below critical msg in the system log?
Backtrace execution for the restarted process stopped due to an error accessing memory. Possible memory corruption?
P.S: this is the passive firewall when the active FW went down.
...
Dear Team,
The description of the ms-kms application is as follows.
Description
Microsoft Key Management Service (KMS) activates computers on a local network, eliminating the need for individual computers to connect to Microsoft. To do this, KMS uses
running 10.0.2. superuser can create the tag, apply it.
but the tag is not visible in security policy "tag" column.
can open the security policy and "see" the tag.
User is superuser, dynamic.
Latest spyware signatures appear to be blocking legitimate connections to ConnectWise control. The 5/2 AppThreat-8564-7375 update categorizes the connection/file (GetSessionDetails) as threat Generic PHP Webshell File Detection.
Produces "unknown erro
...
Hi all, looking for advice following what is in my opinion very unusual behavior.
Where I work for, we have a PA220 running Firmware version 9.0.3 that is used as the firewall for VoIP traffic for physical desk phones. We have two brands of IP
...
All the DLP products I have researched require ICAP capability which the PA doesn't support. Does anyone know of a DLP product (network appliance or VM not client based) that will actually work with the decryption broker solution?
Please don't sugge
...
Hi All,
I have a client that has recently run into an issue, after upgrading to PAN OS 10.1.2. When they connect to Global Protect with their username and then try to RDP through the GP tunnel to a server on site using a different user account that i
...
Hi,
Is there any way to bypass the Telegram app traffic for SSLdecrypt? any idea?
We are using User Identification and have the user-id agent running on 2 different AD servers. Also using global protect. When looking at traffic logs I can filter on my GlobalProtect VPN IP, I can see the source user of my user account, and a sour
...
Team,
Any idea on belows, Pls share.
How to make firewall trust interface down if untrust fails on Active/Active setup in PA firewalls.
Don't want to manually make it down. Facing challenges in Azure VM Active/Active firewall.
Hi,
Hi ,
I have two sites , between sites layer 3 connection is there .single firewall deployed in each site .Now I want to make active standby with these firewalls .
How can I do that , does it work without any problem ?
What need to be dome to make
...
Hello,
Can we build VPN ipsec Client to site with strongwan in customer side.
We can't use globalprotect
Regards,
Mehdi Mtalsi,
Hello, good afternoon everyone, thank you very much for your support and help.
I have the following scenario:
A pair of firewalls configured in HA, such as Active Passive, model 5250.
There are currently 2 links to the Internet, the main link, that is
Hello, good afternoon everyone, thank you very much for your time, help and support.
I have the following scenario:
1.- Panorama managing 6 firewalls
2.- Panorama version 9.1.6
3.- Firewall HA 9.1.6 (5250 - This will be used for configuration migration
reaper
on:
Agentless User-Id integration
reaper
on:
Required PAN-OS 8.1.25-h1 for PA 3060
reaper
on:
IPSec Phase 1 tunnel not connecting
