My company is about to deploy PA's in a few of our data centers as well as a single Panorama VM. I have a traditional ASA background & want to know some basic theory on how PA's are configured. I am enjoying the free training on the support site bu
...
Hi all,
I have installed successfully minemeld on a test Ubuntu 16.04.
I try to do the same now in production and get an error on bower install :
fatal: [127.0.0.1]: FAILED! => {"changed": true, "cmd": ["bower", "install", "--allow-root"], "delta":
...
we have valid license of GP gateway but Global protect data file not downloading_not showing anything in Dynamic updates. when clicking on check now nothing shows up , tried configuring it as automatic download and install but no luck .
https://live
...
Afaik the User Activity Reports only show allowed traffic from the users. I am trying to find the URL from an IP, which I can see the user have been trying to visit, but got denied.
Is there anyway to do so?
The IP is a service from Amazon, and theref
...
Testing target is Skype which came with Windows 10.
Use the method in the link below and was work (for 1-2 days)
https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Block-Skype/ta-p/52103
Then 1 day suddenly found that it not working any
...
I would like to request a feature in PANOS where you can acknowledge "commit succeeded with warnings" message and then not having to see the warning. Some configuration warnings do not concern me yet the message still appears. Usually not a big deal
...
Hello,
I am looking to configure an always-on VPN with full tunnel access and enable"Enforce Global protect for Network access".
This basically means that users have to connect GP portal to access network when logging in to their machine when off-prem
...
Hi,
Anyone know what proccess I can split tunnel to allow printing locally on GP 8.1?
Thanks
Did something the other day and now i cannot ping/https/ssh to the firewall on its management interface, even though from the firewall i can ping out.
I dont think this is a routing issue as i can do it the other way(out of the device), and the devic
...
Hi team,
I am configuring Firewall as CA and local OCSP responder to use in GP VPN with client cert authen.
However, all the client cert that I generated from the Firewall got "unknown" status in OCSP. So I client cannot authentiate by this cert.
Can
...
Is there a PA equivalent to a cisco command, "show interface trunk"? We have .1q trunks set up and working - I'm looking for information on troubleshooting them, when there's a problem.
Hi Team,
Need your help.
While running global counter I can see continously packets are gettignn dropped with below error.
a609598@paf-ld6-mvs-01-01(active)> show counter global filter packet-filter yes delta yes severity drop
Global counters:
Elapsed t
What is the new model for industry firewalls with wildfire price
Hi Team
we are facing packet drop issue on ipsec traffic once the ecmp is enabled .
we have two ISP and wish to balance the traffic and using balanced round robbin for the same , once this is enabled ipsec packet drop occurs and if we disable ecmp e
...
I am using this link https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-High-Availability-on-PAN-OS/ta-p/54086 to try to configure active/standby HA on my 5020 and I am confused about the ports (control links (CL) ha1, CL ha
...
BPry
on:
When logging into the community can I turn off the email a code?
BPry
on:
Cortex XDR: How to block execution of some unwanted apps
OtakarKlier
on:
Inquiries about PBF nexthop settings when the ISP is a DHCP Client
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
