General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18361 Views
  • 41 replies
  • 32 Likes

Resolved! connect-server-monitor-failure

Hello, We have been experiencing User-ID server monitor connection timeouts to one of our Windows 2008 R2 Domain controllers. The VM domain controller seems fine with all other services (Non Palo). User-ID Agent 8.0.507 installed on the domain contro...

pic.jpg
Farzana by L4 Transporter
  • 6965 Views
  • 3 replies
  • 0 Likes

Using API to get server usage metrics.

I am very new to the Pan-OS API so I am looking for some help retrieving the information I need. Below is a bit of background. I have a few dozen servers and applications that I monitor and support. At the moment some of these apps allow us to look a...

ussvall by L0 Member
  • 906 Views
  • 0 replies
  • 1 Likes

Resolved! IPSec Tunnel performance tips?

Hello folks, I've seen a this article about improving performance by enabling this Adjust TCP MSS. Ours is not enabled.https://live.paloaltonetworks.com/t5/Management-Articles/How-to-Improve-Performance-for-IPSec-Traffic/ta-p/53301 Would this be enab...

ipsec_performance.jpg
OMatlock by L4 Transporter
  • 2062 Views
  • 1 replies
  • 0 Likes

Global Protect: Full Tunnel Enforcement

I have already contact Palo Alot Networks support about this issue and their comment back to me was "you need to protect the route preference/configuration from the host side." The issue that I am facing is that we have third parties that are not man...

debug Palo alto firewall rule

we maintain one PA security policy rule and give ip 192.168.0.11 to access server UTP01, the user is using ip 192.168.0.11, and he can't access the server, we can't find any security log for this. may i know how to debug this rule?

palolili by L0 Member
  • 810 Views
  • 2 replies
  • 0 Likes

ggranular sharepoint filtering

I am trying to implement granular url filtering within sharepoint site but firewall is considering it as a generic. Eg: https://xyz.sharepoint.com/pages/department/* is the url I want to allow and block rest of sharepoint. Whenever I try this link,Fi...

Resolved! GlobalProtect Inactivity Timer - is HIP Profile required?

So in the configuration of GlobalProtect ( v8.0.5, under Network > Globalprotect > Gateways > (gateway name) > Agent tab > Timeout Settings) There's an 'inactivity logout' setting, that has a description of 'Users are logged out of GP when the gatewa...

Source Translations

I'm trying to find out how to get all the static source translations for a perticular subnet on our Pan 7050. I'm trying to make a spreadsheet to keep up to date static ip's being used. Can do such a command cli on the Pan. I was able to do on a Cisc...

Multiple ISP PA5250

Hi I have been asked to purchase a new PA 5250.It will potentially have 20GB throughput to the internet.i am looking at an active active setup, with Aggregate interface inside to each FW.On the Outside i have been asked to connect to 4 x ISP 5GB Band...

want to upgrade to 8.0.X

Hey guys,I have a HA pair of 3020s with 7.1.7and a single 820 firewall with 8.0.2 Which version can you recommend for the 3020s and the 820? 8.0.5?8.0.6?Is there anything to be aware of?

MPI-AE by L4 Transporter
  • 1171 Views
  • 14 replies
  • 0 Likes