Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
I have 2 rules for IT group: IT_Deny and IT_Allow as in the picture below. I'm using a same profile group for both rules, in profile group I have a URL_filter that block some websites like bbc.com, cnn.com
But when I access bbc/cnn, I get blocked by U
...
Just recently had a couple of instances where the GlobalProtect client was not allowing network access. ios 13.2.3 and GP 5.0.9-11
An established login to a mixed WPA home network would not connect, even though showing authenticated, no wifi bars. Sam
...
I am trying to pull a JSON feed that in CURL looks like this:
[ { "dhcphost_id": "105", "dhcplease_end_time": "0", "dhcplease_id": "0", "errno": "0", "ip_addr": "52a6203e", "ip_alias": "test.test....
I am trying to pull a JSON feed that in CURL looks like this:
[ { "dhcphost_id": "105", "dhcplease_end_time": "0", "dhcplease_id": "0", "errno": "0", "ip_addr": "52a6203e", "ip_alias": "test.test....
Hi all!
I'm trying to creating a script for a customer i Windows Batch (*.bat) that needs to login to a Palo Alto Firewall, run a few commands and then login to another firewall and so on.
This is a strict environment so no internet connection is ava
...
I receved notices message about new URLs that are categorized specifically as grayware or cryptocurrency.
But FAQ for the test URLs and for more information about this change is not avaiable:
If anyone has been curious about the 2 new URL Categories that have been recently introduced in the #8206 Dynamic Updates, the LIVEcommunity has just published the following blog:
New URL Filtering Categories: Grayware And Cryptocurrency
I recommen
...
Hello all,
Looking for more information on these two applications if anyone can assist. We're deploying firewalls as an MSSP and some of the traffic we're seeing hit application-based policies doesn't seem to make sense. Some of the examples we've se
...
I need to secure access to Azure AD. The IP address range is available in the following JSON
https://www.microsoft.com/en-us/download/details.aspx?id=56519
How do I go about turning this into an EDL? The JSON file that Microsoft provides contains m
...
when in process of upgrading OS for pa-500 active/passive pair, on the passive devic i upgraded from 7.115 -- 8.0.0(download)-->8.0.20(install) -->8.1.0(download) -->8.1.12(install)
now passive device is 2 major os version ahed , looking for ideas ho
...
Hi All,
I already have two firewalls to set HA and use Active / Passive mode.
But when I put both devices into the same Device Groups and Templates and push the configuration file to both devices, the HA settings of the second device will be overwritte
I have an employee who travels often with a need to simultaneously connect to two Global Protect VPNs, neither of which are clientless VPNs.
The first connection is to the main office.
The second connection is to another company, which has whitelisted
...
Hello everyone,
I want to make redundancy ssl vpn for two ISP.I have two ISP.I will use DNS failover.And write nat rule for two publıc to loopback interface.(I use loopback interface for globalprotect).I write symmetric return for two external interf
...
Hi All,
Is it possible to use a Multi-VSYS Palo Alto to have the active-primary on one Palo Alto and a second VSYS Active-Primary on the second Palo Alto in Active-Active HA mode. I've done this on Cisco Active-Active firewalls but I need to do this
...
Anyone else notice that the Palo Alto URL filtering test pages (example: http://urlfiltering.paloaltonetworks.com/test-command-and-control) are no longer reachable using http?
This article describes the pages and why you would want to use them to val
...
TomYoung
on:
Confused about QoS on Palo, need some assistance.
TomYoung
on:
Static Port Address Translation question
TomYoung
on:
what is the cli command for checking last failover
reaper
on:
SSL inbound inspection certificate issue
TomYoung
on:
One Global Protect Portal and Two Global Protect Gateways in One Firewall
