If you are curious to know more about how the LIVEcommunity works, have a chance to chat with community team members, or ask a non-technical question? Now’s your chance! The floor is open for all you burning questions now through June 24. The LIVEcom...
To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...
When setting up a Global policy object for a Paloalto globalprotect user/group , the maxpwdage attribute does not match the, the password expiry date sent for Paloalto user, This can be confusing to know when the password actually going to expire for...
I apologize of this is a dumb question as I know that some sites will have decyrption issues, but is it normal to have a lot of traffic log entries with decrypt-error as the session end reason? None of our users are complaining that they can't get to...
Hi, I have two zone (trust and trust),for trust to untrust traffic flow and untrust to trust , do I need to create two security rules ? Thanks
In Policies what is the difference between applications and services?
Hello All, As the title states, I am new to Palo Alto training and the Community. I have started the lab Firewall 7.1: Install, Configure, and Manage (EDU-101) and downloaded the lab guide. I would like to login to a device as it states on step 3: "3...
Why Palo is not sinkholing DNS queries to the kill switch URLs? Currently if I run a DNS lookup request for the kill switch URL, it come back with the valid DNS response. shouldn't this be sinkholed? When the guy "accidentally" found the kill switch,...
I have several older machines (XP) that are used for special purposes that cannot be be upgraded. Even the hardware cannot be upgraded or replaced (running on old dell dimenion desktops). These machines do not need access to the internet but they are...
Hi,What is the benefit if we use sinkhole instead of just blocking malicious domain resolvingThanks
What is the difference between pre rules and post rules ? None of my colleagues could answer this question upto my satisfaction.Can I expect expert comments ?
Hi Still a beginer with the PA. I have a universal rule that allows from any zone my internal ip address to ip address group that has by proxy addresses in it. For applicaiton I have http-proxy - this covers a lot of portsdefault urls from my test bo...
Hi, Related to this issue here however the error code is different, Link here Upon checking the logs:(T5392) 05/15/17 10:55:32:387 Error( 51): Driver is not installed, reinstall it now! 05/15/17 10:55:27[Info 297]: Driver inf file is installed succes...
Hi,Users complain about the office365 outlook connectivity ,slow submission of email . From PA prespecive what need to be verified and make sure there is nothing from the PA side . Thanks
Hello Community members, For those who are using 7000 series chassis, how many NPCs are installed in the chassis? Are all of the NPC have interfaces connected to the up/down stream routers/switches? What kind of latency are you experiening when the i...
Hi All, I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN. The tunnel of the GP doesn't have an IP addre...
Hello Is it a way to help protect our Windows systems from attacs from internet/lans using url protection (or other technics)? According to https://mobile.twitter.com/msuiche/status/863284743940575232 it's using hardcoded url so it could be possible....
on:
For AD user password reset option
on:
"Server error : Timed out while getting config lock. Please try again."
on:
Redundant Static Route through two IPSec Tunnels
on:
Log Forwarding - are changes disruptive to PAN firewalls?
on:
Global Protect pre-logon and user IP Pools
| User | Likes Count |
|---|---|
| 33 | |
| 18 | |
| 16 | |
| 14 | |
| 10 |
