Hello forum members,
I have been testing the VPN site-2-site configurations on my Palo Alto VM lab, prior to deploying on our production environment. I have successfully set up a VPN connection where both firewalls use static routing. Trouble I'm hav
...
All, is there an easy way to designate a vr as aq source when pinging ? Like ping host a.b.c.d virtual-router myvr ?
So far I only found a way to specify a source interface but the I need first look up a source interface in the specific VR. Any easier
...
I am planning to install another vsys in the 7080 firewall
my queries
how many max vsys can be created for the 7080 firewall
How may Site2Site tunnels it supports for each Vsys
How many RAVPNs it supports for each Vsys
How many connections it can han
...
Hi All.
I am in a postion that we would like to migrate our current cconfiguration of multiple trunk 10g links supporting a vlan with subinterfaces and vsys's to virtual wire mode on the existing chassis, (i.e. 7050, or 5060).
As I understand it, we w
...
Hi there,
Is it possible to enforece browser challange for Cpative Portal for HTTPS traffic with out SSL inspection on the firewall?
Regards,
Nagarjuna
I think I know the answer for this question but would like to confirm with anyone who actually imoplemented this. I have a static route with destination 10.237.102.143/32 going through tunnel 10 . Now, I would like to have a staic route to 10.224.0.0
...
Is this supported or not?
It can be configured, but rumors floading around the internet says that there is a part in the panos 9 that says support for pre-negotiation will be added for some models, among those 3200
Hi, I am trying to configure palo alto with ansible. the normal ping and ssh connection is fine but the "ansible -m ping all" command is returning error that the "ssh authentication failed". How is that possible, if the normal ssh is working fine. Pl...
I was Testing the Connectivity between two end points for Testing Purpose only
Server(10.50.50.1)--------Sw1---------eth1/8----- PA-------------eth1/7-----------------Sw2-----------User PC(10.7.7.6)
PA VR1 has interface Eth1/7
PA VR2 has interface E
...
I have configured LDAP group under Group Map settings.
I have added the ldap group there.
Then under security policy source user is any and under user i added that group name.
When i do sh user group list i see the group name and user ids under it.
wh
...
I have created CSR and exported that to our Server team as they would generate the cert based off of that.
PA is in active passive mode.
Do webgui cert of Active PA will syn with Passive PA?
Do I need to create separte CSR for the passive PA?
We also
...
Seems we are unable ro run SaaS usage report more than 30 days?
Is there any way we can run usage report for SaaS more than 30 days?
Hi,
I was wondering if anyone have been succesful in getting the actual file names of what is being up/downloaded to ShareFile? All I get is file name 'blob'. We do decrypt the traffic but my guess is citrix encapsulates the files making the names
...
HA active device
Upon initial configuration the device with the lowest priority, value close to zero, becomes the active unit (default priority is 100). If two devices have the same priority value, the device with the lowest MAC address of the HA1 lin
...
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
OtakarKlier
on:
Palo HA with LACP to Cisco Stack Switch
aleksandar.asta
