Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real
I am rolling out SSL Decryption for the wired subnets at my office. It's working great for the users since their laptops and devices are on the domain and trust our private CA which is used as the forward-trust cert. I'm running into issues with othe
...
Hi all,
I had an issue where a client created a Custom URL category with multiple of URLs and added it in a Security Rule, all of the URLs specified in that custom category is matching except one URL with wild card such as *.sometechnologies.com.
I'm
...
Cant upload Wildfire update after manually activating the license, we are getting ready for PA migration (replacing old PA with with new) hence new PA firewalls are not connected to live environment and doesn't have internet connectivity. config was
...
Has anyone cloned configuration from a PA-3020 HA pair in active/passive mode to PA-850's that aren't managed by Panorama? Maybe not those specific model numbers even? I'm not familiar with Panorama, and have searched here, and online but all I find
...
Hi All,
I got this question from the learning center for the PCNSE practice exam. Dont know if its allowed to post the screenshot here.
From my understanding of using the application override, the firewall stops any further content inspection. It wa
...
Hi All,
Help here will be appreciated.
I am migrating a pair of PA-5220's to Active-Passive as they are currently Active-Active. First job in the task is to change the interfaces from /30 to /29 subnets. This is to ensure that both firewalls sit withi
...
Hi All,
I'm trying to determine if this is possible.
We are blocking abc.company.com via an entry in a custom url category which is applied to the internet policy via a URL filtering profile.
I need to allow abc.company.com/specificpath while still b
...
I downloaded the PAN-VM 10.0.6 from the customer site. It is showing me the PA-HDF login: prompt, when I type in the default username: admin and password:admin, it's showing incorrect username and password. Any idea how to fix this?
we have PA 220 running 9.0.4
show system resources shows
show system resources
top - 09:53:13 up 2 days, 12:46, 1 user, load average: 2.11, 2.28, 2.35
Tasks: 139 total, 5 running, 134 sleeping, 0 stopped, 0 zombie
%Cpu(s): 59.4 us, 10.4 sy, 1.4 ni, 28.
Hello Community,
Is there a way on the PALO ALTO that we can do DHCP reservation while using the Global protect client VPN.
As of now we don't have any DHCP relay on the PALO ALTO. The PALO ALTO is the one providing IP address for the global protect u
Good morning,
I am relatively new to the PA's, but was wondering if there was a way to have a list of URL's & domains to whitelist Java traffic & block everything else? And if so, can I then write any kind of regex to match specific java versions, sa
...
Dear Team,
I have one site 2 site VPN tunnel b/w Paloalto and cisco. some time i can see the tunnel is going automatic down and after some time it will come automatically.
I have checked ikemgr and system logs but i am not able to find exact issue why
...
Hi,
I hope it works but looking for confirmation.
In PAN-OS with PA-5450, can we have multiple virtual wires configured e.g. 3 pair of interfaces configured as 3 virtual wires.
Use case is PA NGFW deployment as inline IPS protecting 3 separate segmen
...
I would like to know whether Palo Alto support crowd strike antivirus endpoint monitoring ( Antivirus update check ) before connecting any user to VPN network or not.
If yes, Please let me know document for deployment steps.
I am running the PAN as a vWire and trying to send traffic to
Meraki VPN Registry at port 9350. Why does this traffic show up in Session
Browser but not in Traffic Logs?
on:
I am not able to commit and it fails. Below is error message I get.
on:
anyone notice issues with HA pair synchronization with panos 10.1?
on:
Block domain while permitting some access.
on:
Threat Prevention Inline Cloud Analysis - Allow on Max Latency
on:
Interfaces in power-down state
