Hi All ,
Just checking what cmd we can use to validate receive and adversities BGP route from a peer like we have in cisco .
@PavelK
Hello,
I'm trying to configure a Security Policy to only allow US-region IP addresses to hit our network. I added as a first rule to allow any untrust us region to destination untrust US region. I am not sure if this is correct. maybe I'm allowin
...
Has anyone had success deploying the GlobalProtect.pkg (5.2.9-35) to Mac devices via Intune? I upload the pkg file to Intune and assign the app. It successfully installs GlobalProtect but it then runs the uninstaller as well, removing GlobalProtect f
...
I am currently testing GlobalProtect Always on, I have configured to operate at user logon. The issue I am having is that on start-up of my laptop, on my corporate network I am prevented from any network access. If I connect to my public WIFI and con
...
Hi Folks,
We have PA-3250 firewall deployed in our environment managed by Panorama.
The panorama is deployed in Panorama mode and the firewall is under panorama and no connectivity issue between firewall and Panorama.
The firewall is also added
...
L2TP over PAN-OS 8.1.11 with
IPSec is supported in PAN-OS 8.1.11?
When I check the traffic log, the reason for session termination is "aged-out" and I am unable to make a VPN connection.
I have Virtual Wire set up, but I would like to know if anyo
...
In Global Protect HIP check we have allowed only specific domain machine and specific antivirus. Firewall will continue to check domain and antivirus if Global Protect license is expired ?
Any impact if GP license expired ? Do we require to remove HI
...
We are currently in the stages of switching over our equipment to palo alto. In preparation, we are installing the global protect app on all machines ahead of the migration. I've got a silent install setup, but once it completes, I get a connection f
...
Dear all,
What is the session timeout for unknown-tcp/udp?
Since this is an application which has no values set for timeout, can I conclude it will use the default-tcp/udp timeouts?
Kind regards
Palo gateways have supported ipsec site to site vpn for a long time. Do they also support acting as an OpenVPN gateway? I dont mean openvpn passthrough to a backend. I mean actually being the Openvpn endpoint.
Hi, i found a PA 200 in the trash, it works fine, is it viable to use it as a firewall. I don't have access to any support at all. Not even a os update of some kind. And is there any way i can get said update. Have a great day.
Is there a way to "revert" via cli? I don't mean config changes either, I mean like the following places:
1. Network > Interfaces > Ethernet1/1
2. Device > Setup > Management
I'd like to script out reverting these.
I don't think there is, but just double checking.
Is there anyway via GUI or CLI to shutdown a port on the Palo? There are times when I would like to do some configuration, such as sub-interfaces and so on to an aggregate group that is plugged int
...
Hello,
We cannot export the metadata, when you are in the FW, in the Global protect section, it does not allow you to enter the IP or the Vsys.
When I select in the Authentication Profile, the profile from which I want to export the data, and I sel
...
Hello Palo Alto Community ,
I have problem in communcating betwen Fire wall and Domain Controller (ldap).Status show me Acces Denied on Server Monitoring,i try change user roles to fix it , but again show me the same status Acces Denied .
Please he
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
