Looking for Radius Vendor who supports EAP-TTLS with PAP for Firewall/Panorama Admin auth

I am not able to find any of the vendors in the industry that supports EAP on top of PAP. Like EAP-TTLS with PAP that which Palo supports though.

Did you know any vendors supports EAP-TTLS with PAP for Firewall Admin authentication ?! NOT for global p

Need to block WINSCP application but want to allow ssh

Hi Team

In sec policy I have allowed for some users only RDP and SSH application. But these users are able to use WINSCP application because WINSCP application also using port 22. I want to block winscp application but allow ssh application. How can

Show A Warning Page When Loading A Block Website

Hey,

Is it possible to set up either a warning page or auto email to the specific user when trying to access a blocked site, currently it just doesn't load and wonder if I can set up a notification to the user that the following page is not allowed?

DHCP Server Reserve a long list of IP addresses

Hi everyone,

I have a list with more than 50 mac addresses, I want to configure PA DHCP Server to reserve IP addresses to these MAC addresses, is there an easy way to make reservation instead of enter these 50+ records one-by-one?  Thanks.

Regards,

Dan

how to permit SSH access for certain IP addresses on PAN? They should be pingable and reachable too.

Please help me figure out how to allow SSH access for certain IP addresses on PAN firewall.

Thanks,

Roopa

SIP traffic being arbitrarily discarded

Hello Folks,

We are currently leveraging Cisco's IP Communicator platform to allow VOIP to our user via softphone. The scenario is as follows:

1. User logs into a ASA VPN gateway using Cisco Any connect, the ASA is located in an AWS environment.

2. Th

Custom miner, 'Commit Failed: unknown node class', no nodes.json file

Hi All,

I followed the same steps as in the ytexample guide.

https://github.com/PaloAltoNetworks/minemeld/wiki/How-To-Write-a-Simple-Miner

Including putting my class in:

/opt/minemeld/engine/0.9.68/lib/python2.7/site-packages/minemeld/ft

By the

PA-850 for a home lab

Hello everyone,

I'm looking to purchase a PA-850 for my home lab but after doing some research I have some concerns.

I was planning on buying an 850 on eBay then getting the lab PAN-PA-850-BND-LAB4 through a VAR but I think I will have issues. Based

Configuration Sync is not happening on HA,Server error : Failed to synchronize running configuration

Running configuration  sync is not happening between HA peers(PA-5050). We tried manually from Passive firewall CLI by the command request high-availability sync-to-remote running-config but I are getting the error Server error: Failed to synchronize

openssh vulnerability clarification

Team,
             Below Advisory mentioned that openssh 7.9 is affected with few vulnerabilities  and on upgrade to 8.1.13 will resolve it.
https://security.paloaltonetworks.com/PAN-SA-2020-0002

but below pan os open source listing mentioned as openss

User-ID Mappings Not Showing

Hi All,

As the title suggest, I'm not getting any local user-ip mappings from our Active Directory Domain Controllers.

if I do a "show user server-monitor state all" on the cli I can see the output below (I've removed the domain controller hostname a

Need a catalog to select Paloalto UTM for our clients based on there user count.