General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 19439 Views
  • 41 replies
  • 32 Likes

Radius Authentication - Passive Firewall

Hi, I am trying to authenticate the passive firewall via Radius for management purposes. In the active firewall I have the same radius server configured with two different secret keys (one for active and one for passive). On my radius server I have t...

indysogi by L2 Linker
  • 995 Views
  • 4 replies
  • 0 Likes

PCI compliance and port 443

We are employing GlobalProtect VPN on our PA, which also happens to be our intranet gateway (NAT) to the Internet. Technically speaking, the setup works very well. Because port 443 is typically open on most firewalls, we can connect to the VPN virtua...

Google QUIC Disconnects

We started getting complaints from users that various Google services were showing intermittent disconnects. I think we've tracked it down to the QUIC protocol not being accurately identified by the PAN firewalls and getting blocked. I see 443/udp tr...

cosx by L2 Linker
  • 1220 Views
  • 2 replies
  • 0 Likes

Reporting on Security/NAT Polcies and Hit Counts

Is there a way to export the current Security and NAT Policies to CSV, or even just PDF? I need to clean up a dirty firewall that I inherited, but I need other teams to let me know what is active/inactive. Screenshots or CLI outputs can work, but I w...

Resolved! Statistics/reports on how much SSL-traffic you got?

Hi, any of you who knows if there is a whitepaper or such on how to generate a report or otherwise pick out the numbers/figures/graphs for how much SSL-traffic you got vs non SSL-traffic through a PA device? That is both in bandwidth and number of co...

mikand by L6 Presenter
  • 1707 Views
  • 17 replies
  • 0 Likes

Policy Based Forwading Capability Question

Hello All, Was just wondering if anyone may be able to help with this our question. Please see the attached High Level Diagram. Both Firewalls are PA 3020's with the full licence set enabled. We need to replace the ISA server which is not providing a...

Data Flows.jpg
WesNeary by L1 Bithead
  • 2869 Views
  • 5 replies
  • 0 Likes

Resolved! Multiple Tunnels with 0.0.0.0/0 proxy-ids

The scenario is 3 firewalls, with PA-HO acting as the hub and PA-1 and PA-2 as the branch sites. The Branch sites connect to the head office network via ipsec tunnels to PA-HO and vice-versa. Due to multple dis-contigous subnets on the branches, it w...

Resolved! About address and EBL limitation for maximum

Hello. I want to know my question what address and EBL maximum from you. 1. https://live.paloaltonetworks.com/t5/Configuration-Articles/Using-IP-Address-Lists-on-Palo-Alto-Networks-Policies/ta-p/57411 The above documnet describes " Each imported list...

Resolved! Log timestamps

Hi, My query is about how the Palo Alto firewall timestamps logs when it sends them to a syslog server. Does it stamp the logs with UTC (GMT) time or does it use the configured local time as the timestamp? I notice when reviewing logs on the device i...

Top Solution Authors
Top Liked Authors