how to block shortened links?
How can I effectively block shortened links on firewall? I can't figure a wildcard url format for them. Please advise.
How can I effectively block shortened links on firewall? I can't figure a wildcard url format for them. Please advise.
We have our in house mail server which is behind the Palo Alto, all incoming and outgoing email traffic go through it. Can we analyze the email traffic and get following information? SenderRecipient Attachment File nameAttachment File TypeEmail SubjectEmail body / content
Hi, When I configure HA for data link I use Ethernet when devices are directly connected to each other, but sometimes in the field I see people using IP for transport but the devices are directly connected to each other. Why are they doing this? There is no reason to do it unless it needs to route. Can someone help me understand there logic? Thanks
October 1st is Customer Experience (CX) Day, and Palo Alto Networks is celebrating you, our customer! Join us in this celebration. Tells us: - What great customer experience means to you. OR - About a LIVEcommunity member or Palo Alto Networks employee you think delivers fantastic customer experience! Use the hashtag #CXDAY2019 with your...
Hii have a problem. i have configured vpn ikev2 ipsec. When test vpn with CLI command( test vpn ipsec tunnel [name]) vpn gets up. But when other side try to connect, vpn do not get up.Also when i check system logs this logs appears:'IKE phase-1 negotiation is failed. Couldn\'t find configuration for IKE phase-1 request for peer IP x.x.x.x[500].'
I'm trying to get pxe boot to work through the firewall. Now options 66 and 67 are available in palos dhcp server but I can't get it to work anyway. Besdies normal dhcp options I've setup option 66 with IP and ip-address and option 67 with ASCII and \path\bootfile I have a sec pol with any any to the sccm server. All I can see is tftp traffi...
Hello Team, Kindly inform what is the information contains in md2 partition?Also inform the threshold for each partition. RegardsKarthikeyan
Curious if anyone has Meraki and a PAN setup. We are trying to to link our remote sites to the data center. At the remotes the meraki is the router then in the data center we have the meraki behind the the PA. We can establish a VPN tunnel and ping internal devices, but it is really slow. For example logons to workstations take forever, and ...
I have a Pa220 and its using DHCP for untrust interface. I have followed about 40 documents and knowledgebases and still have no success with connecting my iphone to the palo via global protect. I am using self generated cert. I have collected the logs from the GP client but, I do not know what I am looking for to see what the issue is.
We have M500 and syslog server getting all the traffic logs.What we want is do not send DNS logs to M500 only to Syslog server.Need to know how can i config this ? Currently we have single log forwarding profile.
What will happen in that case when DNS server becomes unreachable ? Would destination server be unreachable ? Possible solution if DNS server gets unreachable.
I'm running PanOS 9.0.3-h3 and I'm creating some new Security Policies.I like that I can see what applications are getting hit in the rule. My only problem is that while I'm testing, I seem to have to wait overnight for the Applications Seen to get updated for new rules.Is there a way from the GUI or CLI to force the processing of the Apps seen?...
I want all satellites to route all traffic through VPN tunnel when it's available. In GP gateway if I leave Access Routes emtpy or if I publish 0.0.0.0/0 to the satellite I get the default route with metric 100 on the atellite. But that means the static default route entered on initial configuration of satellite will still remain the active rout...
Is it possible to add the apps seen by the policy optimizer to an application group already created? I feel like this should be easy, but I can't seem to be able to do it. It appears you can create new app groups but cant add to current? Am I missing something?
We are getting alerts for "HA Group 5: Anti-Virus version continues to not match after device update". Upon checking the AV version is mismatch between primary and Secondary FW.We are using PAN-OS 8.0.16Why is this happening and how to fix this?Thanks in advance.
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

