How to apply QOS on the Incoming traffic from Tunnel interface ?
Hi Team, How to apply QOS on VPN tunnel ingress interface ? Please helps us RegardsMohammed Asik
Hi Team, How to apply QOS on VPN tunnel ingress interface ? Please helps us RegardsMohammed Asik
Hi Team, I am facing an issue that the Sometimes the "Source User" does not map with IP address. Please suggest me.
Hello, I am extremely new to Palo Alto and trying to find my feet here.. we are planning to procure Palo Alto Firewalls for our AWS Deployment and i need help with some of the basic questions related to it. 1) Is Panaroma similar to what we call a Checkpoint Management Server ? and is it essential to deploy Panaroma along with Palo alto HA/Clust...
I have setup user-id mapping using the instruction here:https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/user-id/map-ip-addresses-to-users/configure-user-mapping-using-the-windows-user-id-agent.html#idf8932678-911a-4153-ab89-94f19b988aef I have 2 servers with the user-id agent and 2 servers with the terminal server agent all set up and ...
Hi every onei faced this problem while configuring my Ldap profile on palo alto.the connexion between palo alto and windows server 2012 is not effective.the BASE do not appear. May somebody give me a help
Hello,Has anyone seen the following issue? Panorama manages a security policy for a remote PA, if you try clear the app seen counter on the remote PA using this KB https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/app-id/security-policy-rule-optimization/policy-optimizer-concepts/clear-application-usage-data you get a server error: fail ...
Hi Team,In monitor >> threat>> we are getting URL column as blank.We can see source address and destination address.Can we get URL also in the logs for any actions of vulnerability protection? Thanking You in advance!!
Hello Guys, Joined the community recently...!! Hope all you are good in health and doing great..!! Here...I am looking for a recommended and basic hardening steps (not a complete book) along with commands line for GUI steps/process for Palo-Alto firewall (with 9.0.4 version). Simply the hardening steps which must be there and available for all ...
Hi, I have the problem that for some URLs I get a block Page and for other URLs I get the "Error secure connection failed" Message.Both responses have the same session end reason: decrypt-cert-validation.As this happens regarding SSL connections I use a decryption Profile with checked: Block sessions with expired certificatesBlock sessions with ...
We're currently having some issues with ms-ds-smb (both v2 and v3) traffic on our PA-3020's (active/passive pair), where we are seeing a 97% speed decrease measured against direct traffic. In order to determine the source of the issue, I have tried to disable server response inspection and all the security profiles, but I'm still getting speeds ...
Hi I have a network with IP addresses in the range of 192.168.100 and 192.168.130 on two singular network cards on the same machine on the local network. Port 4 on the firewall is plugged into another device with the .130 range IP. Port 1 on the firewall is plugged into the local network. I can’t contact the other device from the machine. Any ...
Since our PA updated we've had a problem with one IPSec Tunnel not routing correctly. It appears to relate to just one Proxy ID but I've checked all and they're exactly the same as the PFSense box we're connecting to. Everything was fine until the update to 8.0.6. I've followed this KB... https://live.paloaltonetworks.com/t5/Management-Articles/...
I have a pair of Palo-220's that I've pushed my templates to from Panorama and now the HA options on both devices are in an UnKnown or Down state. These templates have been pushed out to multiple other pairs I have setup alos but this pair is only one to have the issue. I have a case open and have been on hold with Support now for over an hour s...
We already using sectigo cert for gp gateway *.example.com. We have purchased same wildcard certificate from reddit.Sectigo certficate is going to expire before that we want to test GP gateway on new certificate signed by reddit.We will configure GP on our secondary ISP and will create DNS host entry in our machine to test the same. Can we impor...
In File Blocking Security Profile, I am blocking encrypted pdfs. Looking at the Data Filtering Logs, every few seconds office365-enterprise-access application is trying to download encrypted pdf and it gets denied. There also is not file name listed, so it's not clear how I can attribute this to a message and delete it. How are other people ha...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |

