Hi guys,
Nowadays I am playing with a PA-VM (no license) and decryption policy. Basically there are many articles and that explain how Decryption policy works and how to set it up. I have checked and double checked my setting and I cannot make faceboo
...
What method is everyone using to handle false positives for credential phishing? Does everyone just create a custom URL category and drop in the sites where users use corporate email as their user ID?
Hello Community,
Is anyone already running the new version and did you run into any issues after the upgrade?
Thanks in advance!
Hi All,
I'm currently working in an environment which is trying to keep up with the latest Windows 10 release cycles with their Windows as a Service model which brings out releases every 6 months. We have found that with our AV products, our vendor
...
Is there a way to test the rules on a new Palo alto vs the existing firewall it will be replacing without affecting traffic? Something like TAP mode but that can block traffic like an in production firewall?
Hello forum members,
I have been testing the VPN site-2-site configurations on my Palo Alto VM lab, prior to deploying on our production environment. I have successfully set up a VPN connection where both firewalls use static routing. Trouble I'm hav
...
All, is there an easy way to designate a vr as aq source when pinging ? Like ping host a.b.c.d virtual-router myvr ?
So far I only found a way to specify a source interface but the I need first look up a source interface in the specific VR. Any easier
...
I am planning to install another vsys in the 7080 firewall
my queries
how many max vsys can be created for the 7080 firewall
How may Site2Site tunnels it supports for each Vsys
How many RAVPNs it supports for each Vsys
How many connections it can han
...
Hi All.
I am in a postion that we would like to migrate our current cconfiguration of multiple trunk 10g links supporting a vlan with subinterfaces and vsys's to virtual wire mode on the existing chassis, (i.e. 7050, or 5060).
As I understand it, we w
...
Hi there,
Is it possible to enforece browser challange for Cpative Portal for HTTPS traffic with out SSL inspection on the firewall?
Regards,
Nagarjuna
I think I know the answer for this question but would like to confirm with anyone who actually imoplemented this. I have a static route with destination 10.237.102.143/32 going through tunnel 10 . Now, I would like to have a staic route to 10.224.0.0
...
Is this supported or not?
It can be configured, but rumors floading around the internet says that there is a part in the panos 9 that says support for pre-negotiation will be added for some models, among those 3200
Hi, I am trying to configure palo alto with ansible. the normal ping and ssh connection is fine but the "ansible -m ping all" command is returning error that the "ssh authentication failed". How is that possible, if the normal ssh is working fine. Pl...
I was Testing the Connectivity between two end points for Testing Purpose only
Server(10.50.50.1)--------Sw1---------eth1/8----- PA-------------eth1/7-----------------Sw2-----------User PC(10.7.7.6)
PA VR1 has interface Eth1/7
PA VR2 has interface E
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
