Hey everyone, We just enabled a feature on the LIVEcommunity that allows for products to be linked inside of discussions or articles.. this helps cross link information throughout the site, especially useful if you are looking for specific informatio...
To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...
I am attempted to perform an ansible install of Minemeld on RHEL 7. I am receiving the following error. Anyone seen this and have any suggestions for remediation? Thanks I receive the following message when I run the ansible playbook: TASK [minemeld ...
hello have getting a lot of 802.1q tag not configured and invalid interface message in global counters. I'm trying to find the cause, I have configured subinterfaces I see traffic in rx.pcap with properly tag, all traffic is dropped, I see as destina...
hi everyon can palo alto block internet download manager?if can, then how to block
I just spoke to Jim Silha about reporting. Palo Alto comes with a user activity report. Under the section 'Browing Summary by Website' there is a 'Host' column. It is much more report friendly than say 'URL'. I would like to be able to use that in my...
Hello, We have a scenario where a customer wants to deploy two PA3250s in two different locations which will be an Active/Active cluster. There will be a layer 2 link between the two sites and also customer wants a VPN as a backup if the layer 2 link...
Hi,I have a question in reference to the LDAP interval time. Specifically what my goal is I want to be able to let the firewall know about my AD group membership changes quicker. For example if I have a specific AD group that is configured on the fw ...
Hello,I'd like to produce URL reports. I noticed that you can get report on the comlete URL but not based on the URL domain.i.e i get entry for www.pippo.com/cpp/layout.css and another entry for www.pippo.com/img/pippo.jpg and for report purpose is o...
I have scourred everywhere...... What are the differences between the interface states? I can't find anything anywhere!! ukn/ukn/down(power-down)disabled/downforced/uknforced/down If there are others I have missed, I'd love to be enlightened.
Having a weird issue. I installed an 820. I have internet traffic being NAT'ed. My gateway is set to the Palo. My hops to the internet look like this Windows Box ---> Palo 820 --> Cisco Pix --> Internet Provider Pretty basic.. I have a rule in place ...
Hi All we are using 3rd party singed certificate for inbound SSL inspection , once we imported the certificate it is not showing any error and commit is working fine . once we add the certificate to decryption policy it is showing error as bad certif...
We have a default URL Filtering Profile that we use for general use. The default URL Filtering Profile has a couple dozen URL Categories which are set to alert. I need to allow EXEs from only five of the URL categories. If I add the five URL Categori...
Dear All, I'm relatively new to Palo Alto firewalls and I am attempting to implement GlobalProtect to provide remote users with access to our internal network through the Palo Alto firewall and I am striggling to get even the most basic system workin...
I searched through previous threads to see what the best practices are for securing GlobalProtect but the only thread I saw was dated and didn't have too much information. Could anyone share what their best practice is with setting up GlobalProtect? ...
Configuration as below 1. Mangement interface with IP 192.168.1.2 (non-PA device as gateway)2. Windows AD with IP 172.16.1.2 (PA device layer3 interface as gateway)3. Subnet 192.168.1.0/24 and 172.16.1.0/24 cannot reach each other With correct LDAP c...
Hi, we are configuring a VPn between Palo Alto and PFsense. The VPN is configured properly but its nos getting up. No phase 1 up. We have treid to change all values proposals and lifetime. This is the log. We tried to change lifetime with no success....
on:
File blocking allow MS 365 Office installs and Windows updates
on:
Agentless User ID based network administration control using Windows AD server for PAN-OS
on:
Destination Zone
on:
Configuring PA-5250 to act as gateway for guest wireless
on:
user id configuration with radius authentication
