General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Resolved! Configuration Migration between same series appliances

Hello PAN Community. I would like to read your opinions/comments about the following situation: we currently have a HA Scenario deployed in production with 2 PA-3050 in active-pasive mode, both of them with PAN-0S 6.0.4. We plan to replace the scenar...

Resolved! SSL Decryption - log for SSL certificate errors?

Hi all, We are using PANOS URL Filtering and SSL Decryption, and we reject a variety of SSL certificate problems such as expired certificates, SHA-1 signing, etc. When one of our users hits one of these web sites, they get a "block" page. This invari...

RSKadish by L2 Linker
  • 3 replies

Resolved! Proxy IDs help

HelloI have a Palo Alto Firewall which wants to have IPsec Tunnel with a peer firewall which is a Checkpoint Firewall. Any of the firewalls can initiate VPN Traffic. Can someone kindly let me know, what proxy IDs can be set on my Palo alto firewall f...

Domain-map showing no result

What can be the possible reason for debug user-id dump domain-map showing no result. I have a domain with netbios name as test where in the actual domain is I am using user-id agent. I am pulling mapping from the user-id agent as te...

Westcon2 by L3 Networker
  • 1 replies

Wildfire signature

Hi folks, After Wildfire detect that file is malicious , how can i block this file or how can i find this malicious file signature ?

User-ID domain-map

Hi guys. I have a problem with a user-id setup in a large multi domain envoirment. User-ID agentd are working fine, but the user did not match against the group mapping. It looks like we have a problem with the domain map. The command debug user-id d...

Routing Multicast PIM SSM

Hi guys, I have Palo Alto cluster A/P with PIM SSM, I would like to know how is manage the multicast routing if i lost the active member ? Regards

Zacre by L0 Member
  • 1 replies

Resolved! How to find out the right app-id

Hi all, I started studying PA firewall recently and am struggling with finding out the APP-ID for some traffic. I can easily find out the services(or ports for CISCO ASA) and create the rules based on services/ports, but by doing this we will lose th...

Firewall rule optimization

Anyone know of any good firewall optimization software for PA. One that can review the rules and make good suggestion to improve the rule order, removal etc?

jdprovine by L4 Transporter
  • 6 replies

PA Bypass Question - McAfee Evader

Does anyone have any information on the latest posted PA bypass? The youtube video shows some of the FW features being bypassed using McAfee Evader. It appears to require an IP of the firewall to execute - the example also shows most of the evasions ...

DMast by L2 Linker
  • 1 replies

Custome report

Hi How to generate trafficreport for webmail usage like gmailyoutube -education? Thanks

sib2017 by L4 Transporter
  • 1 replies

Resolved! Upgrade question Current version 6.0.10

Hi Am currently a PA n00b, looking at upgrading an active/active stand-alone pair of 3020s currently running 6.0.10, looking to upgrade to 7.0. Question: do we upgrade to 6.1 and then 7.0 or is there a better 6.1.x version to make leap from 6.0.10? T...

Top Solution Authors
Top Liked Authors