on hold 3 1/2 hours ...is Palo closed today? This is unacceptable....we pay BIG $$$ for premium support
on hold 3 1/2 hours ...is Palo closed today? This is unacceptable....we pay BIG $$$ for premium support
on hold 3 1/2 hours ...is Palo closed today? This is unacceptable....we pay BIG $$$ for premium support
I am trying to get rid of FQDN objects that no longer resolve (1000's BTW). Problem is that you can't delete an object if it is in a rule or address group. I can tag all the objects via command line which is great, but how can I see all the rules where an object is tagged with my "delete fqdn" tag? Seems like the Tag Browser could have done this...
Hi Support,The telemetry unable to connect to server.-Device Health and Performance-Product Usage-Threat Prevention All same errorStatus : FailedReason : Server not reachable Follow in https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClZCCA0 Update server configuration was set to updates.paloaltonetworks.com.We try setti...
Hi, I'm trying to get my PA220 up for my home use. Right now it's plugged into a router, and I am plugging a laptop into the second ethernet port. I went through instructions here: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFkCAK My laptop gets an IP of 192.168.1.2, but when I try to connect to any site in Chrome...
We have an issue with the R3 root certificate caused by the OCSP Certificate Revocation Checking within our decryption profile. We're seeing all sites using this certificate being blocked due to unknown issuer. When we run the "debug sslmgr view ocsp all" we can see the responder URL as unavailable with error querying OCSP responder. We've chec...
hello all,I'm a PA noob who has recently just transitioned to a team that has a pretty heavy backlog. sorting through it, I see another team has requested that we remove local admin accounts from our firewalls. to my knowledge, the only local accounts on any of the FWs is the default account, with all admins authenticating using AD. I understand...
Hey team,The site is showing in cryptocurrency and getting blocked (https://www.tradingview.com/). As the checked site is showing under 3 categories and we do not want to allow cryptocurrency.As a workaround, we added the site into the custom category.So we need a permanent solution for the same. But as per the customer's suggestion, the site s...
Hi, We've just 'merged' policies for 2 set of devices in a same Device group and would like to rename Device Group to indicate the list of devices. For example : Original :Device Group AU - au-pa01, au-pa02 (active/passive)Device Group NZ - na-pa01, nz-pa01 (active/passive) After Merging/Changes :Device Group AU - au-pa01/02, nz-pa01/02Device Gr...
Hello,I wanted to deploy a virtual test environment with panorama and a cluster.Does anyone know if it is possible to get trial licenses for a few days to be able to include devices in panorama?Regards
Does anyone know if the these pa-220 issues with pan os 10.x are planned to be addressed?Upgrading a PA-220 firewall takes up to an hour or more.PA-220 firewalls are experiencing slower web interface and CLI performance times. Also, is the Palo recommendation to keep PA-220's on 9.x? I've been holding off going to 10.x for all my models due to ...
I am using Expedition v. 1.2.4.2. Trying to add a PA-440, but this model is not available from the list.Does that mean I cannot use Expedition for my migration?
In November we upgrade to 10.1.3 and this error could not get resolved with TAC so we reverted back. We just upgraded to 10.1.4 and we are getting the same errors as before: deviceconfig -> setting -> session -> dhcp-bcast-session-on unexpected heredeviceconfig -> setting -> session is invalid From what we have read dhcp-bcast-ses...
When i set our URL filter to block category 'web advertisements' it works as expected. However, it also blocks many of the results of Google and Bing searches. I understand that is because the results in question are web advertisements, strictly speaking. Ideally i'd like to block inline advertisements whilst allowing results from Google/Bing se...
Hi, We enabled "Host internal detection" because user in company complanining about GP was taking the cursor. After configurin "Internal host detection" the GP stop taking the cursor but there are some users which its necessary to "Refresh connection" in GP to be efective. Any idea? why some users can need to "refresh connection" in GP?
We understand DoS protection works when we set action Protect. We need to know the benefits to setting action Allow and Deny. Because we think that option is the same as normal security policy. Thank you.
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

