Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello -
I saw a post about this from 2012 and the answer was basically no.
Well, it's been nine years now and I'm hoping there is a way to view shadow rules without doing a commit.
Hi,
I finally received my pair of 3250s and noticed there is the HSCI port used for HA. I didn't realize this before purchasing, so I do not have the cable. Is there a reason why I can't just dedicate an interface for HA to use for HA2?
In case i
...
Hello all,
After letting my cert expire (duh), I've imported a new one, exactly the same process as before.
For some reason the firewall isn't picking it up for Web-GUI, sticking with a self signed cert with the serial number as CN, but uses the inten
...
Hi Team,
I have a concern where is there any way to block malicious domain based or malicious ip based traffic ingress through the firewall to trust zone or dmz zone from untrust zone to be blocked at interface level even before it reaches to pbf or
...
I have configured Captive Portal with MFA and it works fine when the user traffic is originated from Untrust side of the firewall. When the URL "https://<firewall name>:6082/php/uid.php?vsys=1&rule=0" access from one of the internal zones (e.g.) Tru
...
hello guys,
Did some of your GP uses complain that they lost the internet after GP connected?
It just happens recently and for some users only.
GP version is 5.2.7
Thanks
Hi Team,
I have a query where i need to block some unknown attacker or someone malicious from external trying to access my internal network or DMZ.
I need to ways to block or deny those specific traffic. We have enabled country based block, we have IP
...
Hi Team,
I have a query where i need to block domain based malicious domains to be blocked with regards to EDL which we have internally.
I have called the EDL over the Application/URL category of the policy which has the EDL name which consist of cer
...
Is it possible to edit the GlobalProtect download page?
On the page where users are prompted to download the 32bit, 64bit, or Mac version version of GP, I would like to add some instructions for the not so savvy user on which version to select and how
...
Dear Team,
One of our faced some attacks from their wan interface IP. The issue is reported by their ISP team, when we checked in the firewall there are no logs.
In customer network, huge number of traffic is going at the same time. The device is 302
...
hey guys one of my clients is not able to connect in the domain some users are connecting while some are not. The users are in Location A in another city and the Domain server is from another site I attached B the image ignore.
that is it from the fi
...
I am dealing with an issue in which the Palo Alto is in proxy mode. The issue is concerning endpoints being able to access a cloud tenant to register (install) a component.. The FQDN of the cloud tenant has been added as an allowance for these endpo
...
Hi All,
I have a client that has several NAT rule's (as per below). The have discovered in the session table 2 IP's from the 10.128.48.0/22 subnet seem to be hitting 'guest_nat' rule below when they should be hitting the 'users_nat' rule below. When
...
Hi friend,
Can you please all guy , telling me that why zoom is working coz i do not allow policy for this destination Cert address yet?
Thank you.
There are URL as the below list:
crl3.digicert.com
crl4.digicert.com
ocsp.digicert.com
certificates.godaddy
Hi Team,
The customer has a query about whether if is it possible to configure TACACS user authentication through WF-500.
The customer has no panorama setup or anything he was able to successfully configure on Palo Alto NGFW but not on WF-500.
I re
...
OtakarKlier
on:
discrepancy regarding web-browsing ports between applipedia and Pan-OS application
OtakarKlier
on:
Setting Up Double NAT over a site-to-site VPN
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
