Since we do not have any spare Palo Alto FW's and our is production I must ask before doing something wrong...
I deleted object group (that included 2 HA FW's), created new one with the same 2 FW's comited to Panorama, but now the rules and objects a
...
Hi,
I have a new vm on U16.04 and have installed the latest minemeld using the minemeld-ansible.
Once all setup and running it was fine but about 20 mins later where I did nothing as I left my desk I came back to
"ERROR RETRIEVING MINEMELD MET
...
Hello Community,
the logs on my Minemeld shows the below error for all that IPs that catch, could you please advice how to get ride of this problem?
Thanks in advance
We've had Global Protect in production for a while now, but it has just recently been brought to my attention that we are having a lot of users locking their accounts out.
The GP client prompts them for their AD username / password. Maybe they fat-fin
...
So the solution to this is in the below KB
https://live.paloaltonetworks.com/t5/Management-Articles/GlobalProtect-Requests-System-Keychain-Access-on-Mac-OS-X/ta-p/53332
In the comments, it is reqested for there to be a automated way to solve this pro
...
Im installing a single Palo at present with the intent of adding a standby unit in the near future. My question is regarding the interface addresses on the standby unit.
What do i need to configure on the standby unit in regards to IP addressing apar
...
Is there any way to provide reporting for GlobalProtect remote access VPN. Like for example I want a report of users who have connected in the past week, etc. How do i generate those reports?
I have searched high and low for this and found a few articles regarding IKE configuration and nothing seems to fix it.
PAN 3020 v7.0.5. IKE 2 VPN to Azure. The VPN works but around every 50 mintues the tunnel drops out for a few minutes then re-esta
...
Hey!
I'm using curl and the xml api to automtically backup the config of my PA-3020:
https://live.paloaltonetworks.com/t5/Management-Articles/How-To-Backup-of-Config-Files-Periodically-without-Panorama/ta-p/77312
However, the content of that file looks
...
I wish there was a prototype in Minemeld to be able to track all GPCS endpoints via the API.
Currently you can only do it using this rather messy way :-
https://www.paloaltonetworks.com/documentation/10/cloud-services/globalprotect-cloud-service-
...
We encountered with the problem of Skype for Business application , it needs to say
that all another applications are working well, but after migration from Cisco ASA to
PA-820 we saw only tcp-rst-from-server message from remote server to local serve
Hi,
In minemeld logs from the nodes, taking AF-Ransomware node as an example, I have 2 questions regarding the confidence, thanks!
1. does the confidence level come from the source feed?
2. can customers change this confidence level?
Compare to Cisco, it was mention that the bytes size is 1,204 bytes on the datasheet.
How about the Palo Alto?
is it 1,204 bytes or 512 bytes?
Hello!
I have questions about user-id functions.
1. How much user-id be supported by agent-less user-id? I guess that 64K user-id and 640 user-group would be supported on all of PAN model. right?
2. When using user-id collector, How much user-id and use
...
Is there a way to implement this? I have seen the internal host detection option but as far as I can see that is only to choose whether you connect to an internal or external gateway.
I want all remote site users to go through the Palo Alto, but I can...
aleksandar.asta
aleksandar.asta
BPry
on:
how to block facebook and instagram on mobile
