Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi to all,
We are trying to understand why the download speed is really slow vía GP.
We stablish a VPN GP with IPsec without Split Tunneling. We acces to some public web to download a test file. Im downloading a 1G file.
If we download without GP but th...
Hello All,
I have filled the local database with users because we do not have an Active Directory, i create a captive portal to enforce the users to do authentication. in the polices i have grouped the users depends on what they should go through net
...
Hi
The new PA3220 device (FW2) has PANOS version 9 installed, but the firewall (FW1) that is operative is on PANOS 8.1.3.
What are the steps to update the FW1 to the actual version of PANOS?
Hi
I have setup Global protect and I want to use it with LDAP Authentication profile. It works fine however when in the auth profile I add a specific AD group so only users in the group allow to connect to VPN it doesn't work. Even sometime with spec
...
Hi all,
I'm trying to use Minemeld to create an EDL that includes only the IP address ranges used by Azure AD.
I've tried a few things, but can't seem to get it to work.
My current setup is as follows
Miner = cloudIPsWithServiceTags
Processor
...* Ping and Telnet logs from DR Fortigate to Archsight server were to see in firewall. * In cli , session found with discard state for same traffic . After clearing that session issue resolved. ---------------------------------------------------------...
We’ve recently upgraded our PAN from 8.0.4 to the latest version (8.1.13) successfully.
Now the issue is that we’ve been getting an email stating that “registering Wildfire Public Cloud has been successfully” every 20 minutes.
Is there a way to make
...
Anyone been trying to setup SD-WAN routing with template variables? Surely that page in admin guide is completely wrong? Variables should be of type IP address.
Objective:
In a large-scale User-ID deployment in a dynamic network, customers deploy thousands of firewalls that they want to scale dynamically while ensuring that the firewalls can still get IP-User mappings from the Windows User-ID agent.
For this
...
What options are there to download the license on a PA3220 replacement of a failed PA 3220 , which cannot connect to the internet, please inform me how to do it thanks
An error while installing the Palo Alto Traps. The error This installation package is not supported by this processor type, contact your product vendor.
As per Palo alto Traps, Agent will support Intel and AMD processor only and I have Processor Micr
...
It is not clearly described in documentation and I could not find a complete topic related to it. How does application:any, service:application-default behaves when apply to a “Deny” rule?
Presumably it will block the application if application is de
...
If I use a custom log format for syslog does the new custom format replace the existing default format?
So if I want syslog to send before-change-detail and after-change-detail do I have to add every default field to the new custom format so I get de
...
Hi Guys,
Is it possible to direct inbound sinkhole traffic to a custom IP on ports 80/443?
I am trying to see if I am able to redirect traffic hitting our "geolocation block" rule and redirect it to a block page.
Thanks.
Hi All ,
Can we use test security policy match cmd from Panorama ?
i can see option in GUI , but unable to find using CLI .
Thanks
reaper
on:
GlobalProtect Android version 13 issue
reaper
on:
Replacing PA-5220 with a PA-3410 and need the best practice to migrate over configuration
aleksandar.asta
aleksandar.asta
reaper
on:
DNS Security cloud query timeout.
reaper
on:
cli "show" match case insensitive and pipe
