Is there a way to log or record user searches on the firewall or panorama for auditing purposes? There are a lot of information in the Monitor tab that can be potentially misused, so we'd like to record the searches in that tab. Thank you.
Hi,
How can I get user to type username, password and OTP when using RSA Radius 8,1 on Global Protect ?
Portal = Radius (RSA) passes -> LDAP check
Thanks
Hi,
We are getting packet drops on traffic going through IPsec tunnel.We have checked ISP link but there is no drops on ISP link even no load on it. Tunnel is aslo up but getting intermittent drops on traffic goint on IPsec tunnel.
We have checked both
Greetings All,
I am presently running PanOS 5.0.4 on a PA-500 HA. When I try generating a custom report for "URL Log" for a period of 7 days for Top 50 grouped by Top 50 groups with the URL consisting of porn and category not equal to web-advertiseme
...
Wondering if anyone else has seen this?
We upgraded to 8.1.1 from 8.0.8 this morning and immediately had users reporting their VPN client prompting for credientials over and over again forever. The firewall says invalid username/password hwoever we c
...
Hi,
Anyone use "Expired Active Directory Password Change for Remote Users" in PAN version 8.1 and GP Version 4.1?
https://www.paloaltonetworks.com/documentation/41/globalprotect/globalprotect-app-new-features/new-features-released-in-gp-agent-4_1/expir
...
Hello, i have a question about UDP session
rule 34
untrust any
trust any
app icmp, traceroute, ping
service any
action allow
rule 214
any any deny
you can see allow log hit rule 214
i found similar case about tcp.
https://live.paloaltonetworks.com/t5/Manag
...
We are attempting to move a pair of VCP'd layer 2 switches between our ISP's CIENA and our PA 5220 pair. Our ISP is only giving us a single handoff so we were attempting to plug the handoff into the layer 2 switches (nexus 9ks with VCP) on a access
...
Is it possible to push master key and ip address of HA 1 from Panorama to managed firewalls? Or it must be created locally on firewalls?
Anyone have a custom APP-ID to block world cup 2018? or is palo going to release one?
Dear all,
today my Taxii Output stopping working, in minemeld-engine.log i see these errors:
2018-06-15T13:23:33 (24179)actorbase._actor_loop ERROR: CyberSOC-taxiiDataFeed-Test - error executing ActorCommand(command='update', kwargs_={u'source': u'MI
...
Hi,
i get in the system monitor a message Type dnsproxy and event resole-fail mgmt-obj
'Failed to resolve domain name:server.domain.com after trying all attempts to name server(s): IP_from_internal_DNS 8.8.4.4 '
and i dont know why.
I have set and Obje
...
My company has a number of offices which do not have an on-site fw but instead have a router to connect to corporate MPLS through which they also receive internet.
I’ve been asked to look at implementing a globalprotect vpn for all users whether they ...
I have a user that I am trying to reinstall Global Protect (v.4.0.6-7) for. However, whenever I try to install it, i get message that it is trying to find globalprotect64.msi in c:\windows\ccmcache11. CCMcache11 does not exist. So I pointed the inst
...
Hello,
I would like to open this issue up for discussion, and possible resolution. We have an IPSec Tunnel between two Palo Alto Firewalls (PAN 3050 & PAN 820), and we advertise OSPF routes to interconnect both sites, over the tunnel. This was work
...
BPry
on:
PCNSE certification, how to get an online training fully covering all the possible questions
reaper
on:
What does ch mean in PA-VM-OS Software?
