certificate authentication to establish a site-to-site VPN

Hi everybody,

Does anyone knows if it's required by Paloalto that the identification data fields during ike setup be encoded with utf8string? Or is there an incompatibility in Paloalto if these fields are encoded with printablesting?

The other end is

Rules audit

Hello all,

I am looking for firwall hardening rules auding. what should be in consideration and i have only GUI view privilege's.

Regards

Aggregate Interface MAC is not Showing in cisco switch

Hello Everyone,

We have configured LACP between paloalto and cisco switch and Aggregate Interface is showing up at both end but at peer switch its mac address not showing.

However physical port of other interface mac address is showing on that switch.

Antivirus Policy - Action based on Severity Level

Hey All,

we have Antivirus policy in place and we are seeing many, what we believe are, false positives. Mostly on PDF files. Since number is rather high, reporting each one seems a bit excessive. What they all have in common is their severity which i

Mail alert or report for schedule policy expiry time in firewall

Hi Team

In Palo alto firewall whatever the time based policies is going to expire for that we want to configure the mail alerts or reports for example if any rule is going to expire on date of 24 October we should get report or mail alert of those ru

IPSEC VPN intermittent issue

HI,

I have IPsec vpn tunnel between Palo alto to cisco asa, tunnel is UP however it disconnect intermittently. Is there any way to check reason behind disconnection in logs? I have applied path monitoring but it show only UP and down logs not exact c

Live community email DMARC issue

Notification emails that I normally get from the Live community are failing DMARC checks which is causing them to be quarantined.  Their DKIM appears to be invalid and SPF is also failing.  This has been happening for probably a week or so.  I've bee

Probably a Stupid Question Tagged Interface

This is probably a stupid question, but if I just create another Layer-3 sub-interface off of an existing physically connected interface, and TAG that sub interface, that is all I need to do to bring a tagged trunk in through an existing physical con

'show system statistics session' data by snmp

Hello,

Can the values obtained by the command "show system statistics session 'be obtained by SNMP?

Mainly I need the total throughput and packet rate.

Thanks