We have a process to do backups using the cli. I'm going to create a new role restricted to cli for this purpose. What admin role is required to perform backups?
Good morning,
We are trying to leverage as much functionality from our PA FW right now. At the moment we are using 3rd party filtering and 3rd party captive portal. The challenge is always matching the URL filtering logs with the user mac address.
...
Hi,
Just to confirm. it would be compatible this:
UserIdagent in version 9.0.x
and FWs in version 8.0.13
WE need to upgrade FWs to version 9.0.x, and we are thinking to upgrade first UIA, but we are not sure about compatibility in UIA two major higher.
Hi,
I explain my scenario:
We need a cluster A/P in 8.0.x. We had issues upgrading when the LACP didnt come up in the passive node jumping to 8.1.10.
So in the last try we realised that jumping to base 8.1.0 the LACP interfaces were up. So we will do
...
Hello,
If I have a policy for example that allows application "web-browsing" and service is "port 500" - does that mean that the rule will allow if the application is either "web browsing" OR "service 500" or the rule will be allowed if the applicatio
...
Hello all,
currently we use a Panorama VM running PanOS 9.0.5 in Legacy mode (did not even know that was possible) to manage a couple of HA pairs of firewalls.
Unfortunately we are unable to edit the resources of that VM in our Hypervisor, likely due
...
Hello,
I would like to know if static route path monitoring can monitoring outside of the interface bound to the static route?
For example, I want to monitor across a VPN tunnel and if the test fails, withdraw the static route so traffic fails over to
...
Is there limitation of the Alternate Username attribute that be used ? Per example, I'm using a extra attribute which is "uid" which is available in Microsoft AD User attribute. From tcpdump trace, I can see that FW ldap request and AD response prop
...
trying to use monitor (query traffic log) by way of drop-down arrow on a dynamic address group, it gives error saying ' doesn't exist or doesn't contain any member'. However, activating the monitor from a policy rule name which uses the dynamic group...
Hey there everyone.
I wanted to let everyone know that the Cyber Elite experts are among our top contributors within LIVECommunity, and our first interview is with @MP18.
Read the blog here:
https://live.paloaltonetworks.com/t5/blogs/get-to-know
...
Hi all,
I'm quite new using Panorama.
I need to create a new network interface on a device managed by Panorama.
I tried to modify the template but when I push it to device I got an error telling that there isn't that interface.
Of course I miss something
...
Hi,
I would like to do url white listing. before i do white listing , i would like to monitor all url of users and office application.
after that i would like to allow specific url only. In paloalto monitoring is only show destination ip address and ne
...
I've been testing the logging of change events to a syslog server from Panorama. Syslog events indicate a change made by a person and the general section of the change without giving any specific details of what was changed. Looking in Panorama in
...
When upgrading from VM100 to VM300, is there an upgrade SKU with discounted price or use the SKU# "PAN-VM-300-PERPBND2" with regular price?
Thanks,
Michael
Hello guys and Happy New Year!!
First time when I use an palo alto device. So I configure this device PA-220, and I put it on my network.Everything works great but I have some problems; For example now all my MFP devices wont scan to email anymore. I
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
reaper
on:
Version 11.0 or 11.1?
