Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi All, this weekend I had to clean up an asynchronous routing issue, by disabling route advertisement on one side. I have a WAN, which is an upside down triangle, with A and B at the top, and C at the bottom. C was routing right, C->B and traffic
...
I know PBF takes precedence over VR, routes in the fib table. But will it also override connected interface network as well??
Hi,
I have a pair of Cisco controllers setup as mobility anchor controllers, which will basically initiate EoIP tunnel between them. Recently we have placed a Palo Alto 5250 firewalls between the controllers through virtual wire interfaces. The phys
...
Hi all,
after updating from 8.0.x to 8.1.2 we noticed the following behaviour:
In the Data Filtering Monitor the direction of the traffic has moved.
Connections previously shown as 'from internt to lan' are now shown as 'from lan to internet'.
This whe
...
Hello
Syslog server is sending logs to firewall for user-ID parsing.
1- How can I verify that logs are receiving on firewall?
2- How can I test, my custom parser is working to identify the user/ip mapping?
Hi all, I'm hoping someone can help me avoid a huge overhaul and outage window of our DMZ network...
Our DMZ gateway is currently a Palo interface with GlobalProtect enabled on it. Servers on the DMZ are at a remote site connected via a Layer 2 spann
...
Hello
there are some problems with particular web sites.For example live.paloaltonetworks.com ru.wikipedia.com
Hi all
i need to prevent all downloads on a network using Palo alto without affecting browsing
i created a file blocking profile , denied all extentions in the download direction and applied it in a policy
but iam still able to download many exe and j
Hi everyone
i have two ISPsinterfaces connected to my palo alto
i need to make a pbf forcisco vpn client app traffic to cross through the second isp
in the pbf section in policies , i set the application to cisco vpn and ipsec-udb and IKE and set t
...
Hi,
We can not identify GP users in a remote FW. We can see all AD mappings but not GP. I explain the scenario:
INTERNET ---------------> FW Central (gateway GP) -----> MPLS --------------> Remote FW PALO ALTO
both PA are integrated with LDAP, but n
...
Hello i have passed PCNSE EXAM
https://www.linkedin.com/feed/update/urn:li:activity:6416953323617865728/
i can help other guys too if you wish
write me to email:shaigsamadov@gmail.com
I apologize if this has been answered in previous posts, I've tried searching and it seems that I'm getting bit and pieces but not the whole picture.
How would I go about creating my own list of IPs and then customizing Minemeld to mine \ gather
...
I am new to PA & I'm trying to understand the necessity of log collection to a Panorama VM. My company is about to deploy PA-3220's in HA pairs in several data centers. We have a single Panorama VM getting deployed for 6 firewalls (3 HA clusters).
...
Hi
i need to create a qos policy to limit downloads and uploads of user addresses objects created on palo alto device
i know that i will ceate a qos profile for down and up , choose a class , priority and type guaranteed and max BW
then create a qos
...
Is the session is long live ( some applications like nfs,panorama) will start and last till 1 month.
As we have configured log at session end, the log entry will be created once the session is ended.
However we have configured netflow as well.
Netflow i
...
reaper
on:
Agentless User-Id integration
