We have deployed PA-VM (10.1) from Azure marketplace. We are in the process of getting the device registered.
It is at its initial config i.e. only created two eth interfaces, 2 nat rules, 1 VR with two static routes and 1 policy allow all.
However, we
...
Hello,
I am attempting to automatically download paloalto products into my software factory. What is available to do this?
One of my clients configure the site to site tunnel from AWS to Palo alto device the phase 1 is able to up but the second phase is not up it is because we didn't enter the proxy id for or something else i should go for troubleshoot kindly help.
Does 9.1 support DHE/ECDHE. Or is it still RSA only thing. We have a digicert certificate on the backend server, PA version 9.1.10.
As the title suggest i have on my fw (pan os 10.0.4) Threat Activity (ACC) and Monitor-LOGS-threats totally empty.
Since few weeks ago no problem and all the other logs work fine.
And no changes have been made.
Any ideas?
already restart mgmt service wit
Hello,
We are thinking of peering Cisco ISR G2 Router with PA-VM (deployed in Azure).
In Cisco, ESP-AES-256 is used for Encryption and ESP-SHA-256 is used for Authentication.
I can see that these two options are not available in PA-VM.
In that case, wha
...
We could like to know if your organization using a DevOps or DevSecOps model, or are you trying to move to one?
What has your experience been so far? Do you like it? Do you hate it?
Things we can improve on?
Please let us know your thoughts.
Anyone ever tried to import a csr back into config?
I generated a csr on panorama the other day and then went to generate a certificate. (I did not commit at this time)
when I came back with the csr response someone had reverted the config so my csr
...
2021-08-04 03:08:26.800 +0000 PORT4: board_port_autoneg_enabled -> board_port_autoneg, link: 0, mode: 1
2021-08-04 03:08:26.856 +0000 Port 1: DISABLE command received
2021-08-04 03:08:26.856 +0000 PORT1: board_port_autoneg_enabled -> board_port_reset,
Hello All,
Just wondering if 'show session all filter min-age 4000000' displays relevant information. We have around 3200 sessions in session table at average, but when I am trying to look for long-lived or even stuck(?) connections number using comm
...
VPN Site-2-Site both sides with dynamic IP
Good afternoon, first of all, thank you very much for your support and help.
Is it possible to configure the following:
Site 1: Palo Alto with Dynamic output to the Internet.( already have NAT configured on t
...
I have a requirement to pull in our users from Azure AD (or AADDS depending on the solution) into Prisma Cloud in order to create policy rules based on the source user/group but I'm unsure as to which method I would need to set this up? (Device\LDAP,
...
Hello Team,
I am new to this kind of issue and need suggestions as I need to execute the same in my Organisation. I would like to know if we can direct the SMTP Traffic (Outlook Mails) to our IPsec VPN Tunnel without disturbing any other application
Looking for input on this one. From a Palo Alto perspective, what would be the best way to monitor for encrypted traffic in general? Need a way to make sure we're specifically able to point to traffic that was encrypted and provide a report or show t
...
BPry
on:
Explicit proxy chaining
Raido_Rattameis
reaper
on:
Global Protect Portal/Gateway infrastructure
BPry
on:
GlobalProtect and other VPNs
BPry
on:
Action=Allow while NATDestinationIP=0.0.0.0
