Hello, I'd like to block users from downloading any OpenType (.otf) and TrueType (.ttf) fonts. Is there any way to block them?
I would like to set up a Password Profile with all attributes at zero, can this generate an account lock or would I have no problems? regards
Hi community, I realised when i'm exporting the dump file by CLI, it takes so much time in a multi-vsys system but not for a single vsys, what is the reason for this?, there is a way to accelerate this proccess?, Regards.
Hi, there is a fundamental difference between Juniper SRX and Palo Alto Firewalls regarding how reverse route look up occursfor a session. With Juniper SRX, if I have two ingress traffic via two different ISPs, I can put each into its own routing instanceand Juniper forwards the reverse traffic back via ingress ISP. It is very simple and elega...
Hi!I would like to customize the captive portal response page including some corporative images. However, if I link the images to an external server, I get warnings from the browsers because the entire page is not secure. Is there any way to upload the images to the PAN?Thanks!
Hi I need some guidance on setting up BGP peer with my ISP, this is a new connection. I have external interface setup and I can ping to next hop and route to public internet. I need to advertise the /24 block network that my ISP assigned me. This PA will be used as GP Protal and GW, and they have been assigned IPs from /24 block. Is there do...
Hello, I have a WebEx Server hosted behind a PA FW. I need to apply QoS for it. Currently, I have a NAT in place to NAT the WebEx Public IP to the Server Private IP, Destination NAT is applied. Is it applicable to apply QoS for such traffic? I need to ensure WebEx stability despite the utilization.
Hello, It is possible to export logs automatically from a firewall in SFTP or solar wind?
Hi, In lab i am trying to setup a simple global protect configuration where the gateway and portal are on the same IP and just using local user authentication. I have a certificate for my my public IP from let's ecnrypt and have imported this into palo alto. I am able to connect to the portal without any certificate issues. But when connectin...
We are going to upgrade the PAN NGFW from 8.1 to 9.0I have below queriescase 1 : if we have below setting in URL filtering profile will be able to block facebook.com ?custom category_block* - facebook.com - blockcustom category_allow* - facebook.com - allowpredefined category - social networking - block case 2 : if we have below setting in URL ...
As per the attached image, its suggested to take maintenance window of 6 hours for Panorama upgrade activity. Also we cannot move ahead for firewall upgrade unless logging updated on Panorama.We are storing logs in Panorama-M200 and not using any device (log collector) to store the logs. can we ignore the recommended points.If its applicable to ...
After upgrading internal Panorama from 8.1.12 to 9.1.2, we are not able to switch context to UTMs.
Hey, I recently bought a PA-500 Firewall on eBay for testing in my Lab. Unfortunately, I can’t register it at Palo Alto Website, because it is already registered. So I can’t get access to resources like Firmware-Upgrades or even get access to a LAB-License… < Unfortunatelly I can't open a case because you need a registred device (or a device ...
I'm working on an HA project, but can't get the interfaces to negotiate.2 x PA-3220 v8.1 2 x Dell N4032F switches latest recommended firmware The firewalls are setup for active/passive HA and the switches are configured for MLAG and have a LAG setup to connect to the firewalls. The PA ae interface on the active firewall shows one physical in...
