- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Hello, I have a WebEx Server hosted behind a PA FW. I need to apply QoS for it. Currently, I have a NAT in place to NAT the WebEx Public IP to the Server Private IP, Destination NAT is applied. Is it applicable to apply QoS for such traffic? I need to ensure WebEx stability despite the utilization.
Hello, It is possible to export logs automatically from a firewall in SFTP or solar wind?
Hi, In lab i am trying to setup a simple global protect configuration where the gateway and portal are on the same IP and just using local user authentication. I have a certificate for my my public IP from let's ecnrypt and have imported this into palo alto. I am able to connect to the portal without any certificate issues. But when connectin...
We are going to upgrade the PAN NGFW from 8.1 to 9.0I have below queriescase 1 : if we have below setting in URL filtering profile will be able to block facebook.com ?custom category_block* - facebook.com - blockcustom category_allow* - facebook.com - allowpredefined category - social networking - block case 2 : if we have below setting in URL ...
As per the attached image, its suggested to take maintenance window of 6 hours for Panorama upgrade activity. Also we cannot move ahead for firewall upgrade unless logging updated on Panorama.We are storing logs in Panorama-M200 and not using any device (log collector) to store the logs. can we ignore the recommended points.If its applicable to ...
After upgrading internal Panorama from 8.1.12 to 9.1.2, we are not able to switch context to UTMs.
Hey, I recently bought a PA-500 Firewall on eBay for testing in my Lab. Unfortunately, I can’t register it at Palo Alto Website, because it is already registered. So I can’t get access to resources like Firmware-Upgrades or even get access to a LAB-License… < Unfortunatelly I can't open a case because you need a registred device (or a device ...
I'm working on an HA project, but can't get the interfaces to negotiate.2 x PA-3220 v8.1 2 x Dell N4032F switches latest recommended firmware The firewalls are setup for active/passive HA and the switches are configured for MLAG and have a LAG setup to connect to the firewalls. The PA ae interface on the active firewall shows one physical in...
In PAN OS 9.0 multiple URL category feature is added(high, medium and low risk category).Is there any issue if we only upgrade panorama to 9.0 and not a managed firewalls ?We should not face configuration or commit issue as panorama and firewall will be on different platform.
We have a PA-3020 firewall pair that has multiple IPsec tunnels to a VM series pair in AWS. We have 4 IPsec tunnels that we run to the firewalls. They are: Tunnel A - On Prem to AWS FW1 over Direct ConnectTunnel B - On Prem to AWS FW2 over Direct ConnectTunnel C - On Prem to AWS FW1 over Public InternetTunnel D - On Prem to AWS FW1 over Public I...
I am fairly new to Palo Alto so please forgive me if this is a simple answer or answered somewhere else.I have a requirement to lock down our Global protect for our vendors. Here is what I have.I have group mappings and User-ID mappings set up and working fine.I have 2 GP portals and 2 gateways set up. 1 portal\gateway for company users and 1 po...
Hi, I'm relatively new to Palo Alto firewalls - does anyone know if this is possible? Firewall needs to control traffic between VLAN10/Internet, VLAN20/Internet & between VLAN10/VLAN20. Thanks in advance.
We disallowed users to disable global protect app in Portal > app configuration setting , but still due to refresh connection option user able to disconnect GP and using local internet for browsing.We don't want to disable GP icon from system tray due to password change policy.Also enforce global protect for network resource option in app set...
Hello Folks,I'm trying to set up my Palo Alto to do Policy Based Forwarding. Does PA do NAT before Policy Based Forwarding??? I've created Policy based forwarding to send traffic to an interface, if it is sourced from an address. 10.0.0.0/24 BUT it's seems to be failing ... sometimes. I've noticed that it fails when the source traffic is NATTED...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like |
| User | Likes Count |
|---|---|
| 7 | |
| 5 | |
| 3 | |
| 3 | |
| 2 |

