Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
hello team
One of our uses got the server certificate is invalid ERR while he trying to get the global protect connected, I renewed the gateway certificate and tested on a Windows box which is fine, but Mac book user got an ERR.
Did anyone get the sa
...
Hello there
I'm Using Minemeld version 0.9.68 (Ubuntu)
PA version 8.1.12
I'm attempting to install a PA cert on the MineMeld server using this guide:
https://live.paloaltonetworks.com/t5/minemeld-articles/how-to-generate-new-minemeld-https-cert/ta-p/10
...
(T14508) 05/04/20 09:48:34:904 Info ( 474): msgtype = user_credential
(T14508) 05/04/20 09:48:34:904 Debug(2642): ServerThread: ProcessServerUserCredential. Redirect to processServerPortal.
(T14508) 05/04/20 09:48:34:904 Debug(1714): ----portal process
Hi PA Live Community,
Still a newbie to the whole PA world but slowly getting there.
When looking at the ACC tab of the GUI I can see there are entries for "Applications using Non Standard Ports" and also "Rules allowing Applications on Non Standard
...
Hi All,
I need help on how to replace one Faulty Paloalto 3250 firewall PAN OS version 8.1.6 which is in HA and policies are managed through Panorama.
your help is highly appreciated and thank you so much.
thnx
JP
Hi there.
Documentation is rather slim here. I've set ut MFA for web site access, and it works. When testing it for non-http, accessing a SSH server, it kills the SSH connects, but no 2FA challenge on my GP.
What am I doing wrong? What's needed?
I'v
...
Hi All,
I have followed the PA design for creating an HA Active/Passive pair of PA220s.
I see however that HA1 Backup is showing red/down.
Attached are the relevant sections and a High Level Topology of the HA setup.
Any advice?
If I reboot the active
...
Hello everyone,
I have to block some URLs and applications as per our company policies. Since we dont have a general rule from the inside zone to the outside (Internet), we are very restrictive in our access to the internet, and since there are some w
...
In our demo SD-WAN setup we have a couple of SD-WAN rules for ping traffic and also a catch-all rule for all unmatched traffic. For most of the tested applications everything is fine. But for ping (and traceroute) the SD-WAN policy name field in traf
...
We are using PA-VM-300 and it should allow 2000 vpn users concurrently.
Our global protect IP pool is configured for /23, so firewall should accommodate 500 users, as it is having enough IP available in the pool. For some reason, when the other firew
...
I just heard one of my coworkers saying we need to block outbound access to RDP, I didn't have chance to follow up with him what him because of COVID-19. I am trying to to understand what would be the reason, is that a best practice possibly?
Couple of questions on FIPS.
Hi There, How can I monitor l3 subinterface traffic - current & historical. mainly Bandwidth utilization.
Thanks
Hi everyone!
I have an interesting case. My topology is:
PA 3250 HA1------> Nexus 9000---------------VXLAN Overlay-------------------- Nexus 9000--------> PA 3250 HA1
vlan 2201
...
Hi,
is it a good idea giving access to public windowd rdp ?.
Folks says do not publish outside
Any good reason for this ?
Thanks
TomYoung
on:
Confused about QoS on Palo, need some assistance.
TomYoung
on:
Static Port Address Translation question
TomYoung
on:
what is the cli command for checking last failover
reaper
on:
SSL inbound inspection certificate issue
TomYoung
on:
One Global Protect Portal and Two Global Protect Gateways in One Firewall
reaper
on:
password reset for user through support.paloaltonetworks.com
