Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi, In a pitching session with a customer, we have explained all the advantages of Palo Alto over the competitive devices, below are the questions raised by the customer which I was not able to answer,
Hello,
I wonder why I cant use advanced Filtering in ACC. In the monitoring tab I can use quantifiers like eq, neq and contains.
Is there a way to use this or similar ways of wildcards in ACC?
kind regards
According to this article, my API key should be visible under Account > My Wildfire API Keys. However, the Account tab of the portal linked to does not have a section titled that, and does not display any keys anywhere else either. Does anyone know h
...
I have to upgrade Panorama, several associated PA firewalls, as well as antivirus, applications and threats, and Wildfire content updates. I am upgrading from 9.0.5 to 9.0.8 on all devices. I am confused as to the order I am supposed to go in when
...
Hello,
I am kind a new with PaloAlto. I require some help with a scenario I try to put into practice in my lab.
I have a strange situation in my setup.
I have deployed a PaloAlto firewall virtual appliance on a ESXi host. And also created 2 Virtual ma
...
We need to build the new IPSEC tunnel with the vendor.
Our side
PA Public IP say 200.23.23.x for IPEC tunnel
Our Lan
1>>10.0.0.0/8
2>>172.16.0.0/16
Vendor Juniper Public IP 104.156.166.x
Users on our side need to access the vendor network IP
1>>100.65.5.
We want enable LDAP-SSL and i have checked the require SSL/TLS setting in the LDAP profile. I don't see any TCP/636/SSL traffic to the DC from firewall. I only see TCP/389/LDAP traffic, what i am missing.
The custtomer want to config ssl inbound decrypaion for internal server。 They do not want this configuration to affect existing web services。 I checked the relevant information, i think the firewall in Inbound Inspection mode, PAN-OS will not act as ...
Hi ,
Is there a way we can view the MAC addresses learned by Palo Alto, I am not talking about ARP.
So in Juniper/Cisco Layer 2 Switches you can see what mac addresses are learned on the mac address table Can we do that same in Palo Alto?
Thanks
Hi team,
I need to configure data filtering in firewall which should alert me when an excel sheet traffic which contains 19 gmail address goes through the FW i should get alert and traffic should get block when there are 20 and more gmail addresses.
...
HI,
My Minemeld is running in a docker container. It consumes memory as much as possible. Now the server is configured with 32 GB memory, still 100% usage by Minemeld. It crashes every a couple of days. The requested url for feed gets internal error.
...
I'm trying to permit download of gif, jpeg, mpt4, png, svg, webp, and woff, and deny everything else in both directions.
I tried
1) setting up a block rule for any file type in both direction and an allow rule for the file types above for download on
...
Hello,
I'd like to block users from downloading any OpenType (.otf) and TrueType (.ttf) fonts. Is there any way to block them?
I would like to set up a Password Profile with all attributes at zero, can this generate an account lock or would I have no problems?
regards
Hi All,
We are exploring the firewall deployment options for one of our customers who have a requirement to stretch few VLANs across 2 data centers most probably using VXLAN/EVPN. The options currently being explored are:
1. Active-Standby firewalls
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
