Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
What is the minimum number of interfaces in an aggregate interface, will config commit with a single interface?
Running 8.0.x on our PA-3020 and PA-220 systems.
In our virtual routers, we can path monitor with multiple IP addresses and take action on AND or OR conditions, but PBF still seems to be limited to a single IP. I'd love to be able to monitor multipl
...
As far as I've been able to determine, the configuration for the two firewalls (PA-500s) are identical (with different IPs/subnets obviously), but the way they handle blocked connections is very different.
On one firewall, a telnet to a blocked port
...
Can a DHCP relay be configured on the PA to be used by and IPSec tunnel also configured on the PA?
I generated and imported ssl certificate for secure management. I also made sure the CA is on the local machine. I have no issues with Firefox or IE but on chrome, it shows me cert r=error for mgt interface. Did anyone face this before? please offer
...
Hello
I have many IPsec connectios on my PA. But their are 2 that both use 192.168.100.x
Now IPsec A is policy based. So I have configured the proxy ID's. All working fine. Now I have narrowed the routes down to the 2 host I require. Which are 192.168....
For scripting purpose I need to be able to set egress-max values in QoS with the API.
First I created a QoS profile, TRUST-QOS, and set the egress-max to 20
In powershell, I have the following:
$paURL = "https://" + $PAIP + "//api/?key=" + $apiKey +...
I keep having to click forget on the chromebook globalprotect client and re add the portal to get it to connect to the VPN on the PA firewall. This happens daily to many of the Chrome OS devices.
Also the + button to add a second portal does not work.
...
I'm having an issues with some internal routing I have two virtual router that have statics routes for an internal phone network on a different router in my trusted zone I can ping from computers in my lan but when i try and access any websites or ma
...
Software Version 8.0.9
Application Version 8024-474
Panorama VM is not receiving dynamic updates. I have checked traffic is allowed and also license is not expired.
On manual check it is getting this error.
Also tried updating by directly uploading t
...
Do I have to go to 7.1.7 to fix this bug, since it is addressed as the fix for this bug or will a newer version fix it like 7.1.18 or 7.1.19 still fix it even if it is not listed in the list of fixes? You would think that the newer version more even
...
I have been working with SSL decryption over 4 month on testing team.
Most of the traffic is OK but I see some of the traffic are being Aged-Out and some and decrypt-cert-validation as the session end reason.
Tried to do packet capture without seeing
...
Seems some of our customers are trying to slow down youtube, facebook etc. without SSL decryption.
The confusing part is in the logs these show up as youtube-base, facebook-base etc but only sometimes and then other times they show up as SSL.
So is u
...
Hello,
We decided to upgrade our internet line to 1Gbps from current 100Mbps and now we are using PA-500.
As PA-500's Threat prevention throughput is 100Mbps, does it mean we only have 100Mbps(transmission speed) even the PA-500's interface capacity
...
Is it possible to an IPSec VPN connection from a PA 5050 to t Edge gateway appliance and if so how is it done
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
