Hi
I have a set of decrypt rules
1 to no decrypt based on
src address
or
dst address
or
url - the usl is from custom objects / url category where I add in url's lile *.lync.com
then i do my decrypt line so the above gets hit first and then the decrypt
...
Hi
I ran into an issue with the decryption cert being provide by my PA it had expired.
it was 30 days in. I believe this is an issue with the date time comparision and timezones as it has fixed itself today.
How do i find / look at these temp certs v
...
While trying to push dynamic updates from Panorama to managed devices it is failing for some of the devices(PA-200)
It gives an error " Failed to load image.."
We have checked the licenses of the devices for which dynamic updates are failing and found
...
Hello,
I'm trying to create a Rest API URL to check the CPU utilization on my management and data planes and create a report to monitor over time. Using commands like show running resource-monitor did not give me exactly what I was looking for. I us
...
I am have trouble with intermittent synch failures between my primary and passive firewalls. I am currently at OS7.1.16 and TAC told me that to fix my sync issues I need to upgrade to 8, Any thoughts on this
Hi,
I am very new to PaloAlto and currently trying to figure out the following:
1. is HA or Failover VSYS specific?
2. if so, how do I find failover/HA config per vsys?
3. How do I setup failover/HA per vsys?
the appliance i am using is PA-3020 softwa
...
Hello Community,
for a customer we are trying to install the GlobalProtect client on 100 laptops. this works great the laptops connect to the netwerk using the globalprotect client. the problem we have that the postvpnconnectcommand is not running th
...
Hello,
How can I find a description of this list of logs files in firewalls and panorama:
*Panorama:
*Firewall:
Thanks in advance.
Kind regards.
Hi, we have an HA pair of M-100 Panoramas which were running fine until we attempted to upgrade the memory to 32GB to be able to run version 8.1.3. The passive Panorama went fine but the active would not boot after the memory was upped so a replaceme
...
Hi Experts,
I wanted to know if there is any possibility wherein the internet proxy settings can be enforced on client machine while connectting to global protect VPN.
many thanks in advance!!
I am trying to diagnose why I am unable to access some server via ssh and the VPN. I have done a packet trace and the results were concerning tcp out of order and retransmission. So what is the best way to find out why?
I'm trying to figure out whether our file size limits for WildFire are set appropriately. I have been unable to find a good way to determine whether there are files that aren't being uploaded due to their size. Would that show up in our logs? I've al
...
On August 6th multiple social media websites such as Facebook, Twitter, Youtube, & Apple (iTunes) removed infowars.com / Alex Jones content from their platforms. We now have users requesting access to this website from our network. Looking at our fir
...
How do I get the signature on what a Vulnerability has triggered?
I can only see the Threat Name and its ID in Panorama and look up the ID in the Customer Portal.
But there does not stand what combination or findings actually lead to this attack. Where
...
We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL.
https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist
Every few months i got notified to comunication with one of
...
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
OtakarKlier
on:
Palo HA with LACP to Cisco Stack Switch
aleksandar.asta
