Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello all
we have PA in production.The problem is VPN users dont pass by certain authentication profile.The issue is that when we point user it is ok but when we point some group it fails to authenticate
we test through CLI and that is result
test auth
...
Anyone who's used Palo's since the early days may roll their eyes at this question..!
We have a bunch of 3020's and one can take an age to perform commits; for example this morning we performed 4 - the first 2 took <30 seconds, the 3rd took >10 minut
...
Quick question.
We are having some issues where a users' computer name i.e. acme\pc01$ is being reported by UserID rather than the user i.e. acme\jbloggs.
Anyone seen this before and\or advice what it could be?
We have a horendously complicated UserI
...
Hi Community,
I have a strange problem with Kerberos SSO and Globalprotect 4.0.7:
I set up Kerberos SSO and the SSO is working.
If you connect to the Globalprotect-Portal via browser, you directly get a Kerberos ticket and the SSO works.
If you logout
...
Dear All,
We created a seprate vsys and assigned l3 interfaces and virtual router for a vsys. But vsys admin which is assigned for it is unable to view virutal router tabs and ipsec configuration tabs.
We want this vsys should be handle
...
Hi Everyone,
I am trying to use WebRequest (microsoft .net ) class to get report about a sample via WildFire API. The only thing I got is an error "(420) insufficient arguments". In my posted data, the apikey, hash and format are all included. Is th
...
Hi Everyone,
I have recently started to help a team support our Palo Alto's and was tasked to get our Panorama Server to push dynamic updates out to our Firewalls (PA 3050). Originally we had the individual firewalls setup to update themselves, but w
...
i am working on paloalto VM version 5.0.6 and tying to read reports from wildfire with the help of API using cURL.
i am pulling the report on the basis of "device_id" and "report_id" but getting error.
curl -i -k -F device_id=[SERIAL NUMBER] -F report_
...
Hi folks,
We have a PA-200 over in London (on the recall list) that get complaints that the internet has intermittent connectivity issues.
Everytime I login to it, the interface (1/1) is up, green, and no indication of a problem.
Other than contacting
...
Hi Team,
Customer trying to utilize Palo Alto to generate user activity reports that show detailed web browsing. I understand from other articles (https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/monitoring/view-and-manage-reports/gene
...
I have a lots of customers who uses HA pair with 1.1.1.1/30 and 1.1.1.2/30 for HA1 port.
This HA1 port connected directly. And reason for selecting these IPs are because nobody was using it in the past.
Today, I read this article:
https://blog.cloudfla
...
Hi There,
I am new to Palo Alto and we are currently simulating PA VM ESX-7.0.1. I try to implement DNS but though I have reachability to the DNS server (google DNS) my address resolution is not working as expected. Please find the snap below.
Than
...
Hi all, I would like to know about log cache example mp.log.1 or mp.log.old extension .1, old how it occurred and in this case usually with compromise or disk full
Hello,
If global protect fails to establish a IPSec tunnel and uses SSL instead, does it attempt to switch tunnel types if it sees it can do a IPSec tunnel or will it keep it's current tunnel type until the GP client get's refreshed and sees what con
...
Is it possible to have URL filtering by category with just a quiet drop of traffic, no reset or block page? Basically I want to filter without people knowing I am filtering, they just can't connect to a bad website. I can't figure out how to do that;
...
PavelK
on:
Web Auth FW with HA
reaper
on:
Negate Deny Rule
BPry
on:
SFP Compartibility for HA on PA - 850
OtakarKlier
on:
Management Interface down
PavelK
on:
check Panorama Hardware reload/facing Panorama hardware reload after commit firewall policy to Palo firewall (
BPry
on:
When applied tag to security policy, Source user color changed.
