If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
Hello - I have Firewalls configured with Log Forwarding to Panorama. The question is, do the traffic logs of the Firewall Gateway keeps the copy of the logs and send another copy to Panorama or does it have only one copy forwarded to Panorama
Can i c
...
I am deploying Global Protect agent 4.0.0-90, but it auto launches after installation.
I'd like it to be entirely silent. No auto launch.
Is there a flag I've not seen for this?
Hi everybody,
Is possible to customize the GlobalProtect for to do over the endpoint client to show a progress bar when the client receive a update of GlobalProtect agent?
Kind regards,
AROMERO
Hi,
Although looking through this in internal sources as well, but maybe you guys have seen this and have an idea.
Initially there was PA VM-100 trial registered in Support Account 1 - partner account. Everything's good.
Trial expired, full license wa
...
Hey ,
i just wondered why in the era that all web traffic is moving forward beeing encrypted and browsers like chrome will soon mark websites that uses HTTP protocol as "unsage" paloalto "web-browsing" application still uses in it's default ports on
...
Hi guys,
How can we creat a prototype miner in the MInemeld hosted by autofocus, is there any tech document with regards to how to customize/config a prototype for Miner.
Thanks
Hi,
We need to decrypt traffic (SSL Inbound Inspection) for a server which is running 3 URL. This server has 3 certificates, one per application.
So we would like to decrypt traffic for this 3 applications but in decrypt policy we only configure usin
...
Hello everybody,
is there any article or best practice document which discribes the configuration of a Palo Alto 3020 Firewall HA-Cluster active/passive while there is already a working stand alone PA 3020 Firewall.
Is it the same way I configure a H
...
Hi all,
we have some 160 firewalls connected to a single panorama.
One of our suppliers get read only accounts on the firewalls. The accounts including the password and profiles were created on panorama and then pushed as device settings to the firewal
...
Hello All,
BOX 3020, with PANOS 8.0.9 with USER-ID problems
Some IPs are mapped to machine names... not anymore to users...
admin@BRFW-3020-02(active)> show user ip-user-mapping all | match bres
172.26.20.116 vsys1 UIA XXXXXXXX\bresd11192$ 42609 42609
Hi,
I would like to know the way it operates in the backend how palo alto does the SSL decryption in Vwire mode . As in a L3 deployment the connection will terminate on the firewall and firewall acts like a MITM and does the SSL Proxying. How is the c
What is the correct syntax to exclude a whole domain, including subdomains and pages from SSL decryption?
Say exclude all URL's from "test.com", would this suffice:
*.work.com
or would i need to include a list like:
*.work.com
*.work.com/*
*.www.work.c
...
configured site to site ipsec vpn between PA 820(head offc)XG firewall (branch offc)successfully. in the head offc we have 100 mbps download , 25 mbps upload speed and brach we have 100 mbps download and 50mbps upload speed. the vpn performance is ve
...
Hello community,
I was wondering if is possible to make Globalprotect for IOS or Android devices to work properly with connect methods other than on-demand, for example pre-logon. Did anyone accomplish this connection method??
Thanks and Regards,
Mar
...
Hi! We just finished deploying the PA-5260 running PAN-OS 8.0.10 at our edge. Everything works well so far, but we see the log message below in Monitory->Logs->System:
Name resolution takes too long, diskable name for report [report name]
The type is
...
on:
Upload and Download QoS
on:
Mute the Music while on Hold
