Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hi Support
Our Client is using use FortiClient VPN to connect to their servers and get internet access.
Also, they use GlobalProtect. When users who are using both the VPNs simultaneously lose internet access when enabling the GlobalProtect VPN.
I’m
...
Hello community.
Let's say I have an Atlassian Confluence site that needs to be accessed by a user (or multiple) - is it possible to specify down to the URL to only give the user access to a given set of pages?
Confluence permissions only allow me to
...
Dear All,
I need to configure zone protection, how to find the number of connetion per second for each zone.
I tried with "show session info" and i can see "new connection establish rate" but i need to take the average for 2 or 3 weeks.
...
We are an Okta customer, looking to do adaptive MFA. What this means is that Okta will perform a lookup in the client cert store (personal) to see if they have been issued a certificate by Okta, and if so then the device is trusted. We can then bui
...
I have a customer who asked about traffic which he saw on his Firewall.
I looked in firewall logs from several others customers and find the same IP address. It is always a HTTP oder HTTPS connection.
The traffic is coming from the 70.42.131.170. Acco
...
Dear valued Palo Alto Networks customer,
Starting on March 10, 2018, Salesforce will disable the TLS 1.0 encryption protocol (Click here for information on TLS). The disablement of TLS 1.0 will prevent it from being used to access the Salesforce se
...
Hello friends,
I have some signatures with fortigate names and I neet to know the equivalence in Palo Alto, by the CVE Palo Alto dont indentify it, could anyone help me?
web_app3: Narcissus.Image.Configuration.Remote.Command.Execution
CVE-2015-1579 CV
Can't get to the main website, it briefly worked but was useless as it only had CLOUD event stuff on it??
Can't get to support site either?
"Live" works
Various chcek sites say the same, DOWN.
Hi community!
I would like to know, if it is possible to use a region-object as destination address in a Policy-based-forwarding-rule?
I found an articel from 2014 ("Policy Based Forwarding PBF based on destination country or self defined region?") th
...
Hello all
I would like to forbid for selected users both upload and download at all.
How it is possible?
Hi all, I would like to know it can be to find log file user-local on Palo Alto which I can just see useridd.log and useridd.log just see user-id and user-id agent but not user-local, please suggest me.
Thank You
Hi, iam new to the PA product line and trying to figure out stuff in my pa220 before i release them to production.
In one of the scenarios presented; there was a request/question - is it possible to allow users to upload files to a share from one spe
...
Hi,
In my environment, we have several domain controllers around the world across MPLS. In order for users to go out to the internet, they must have an AD account in a certain AD group. This seems to work just fine....but recently we've had a few issu
...
I heard that the PA 5050's are going end of life in 2020 so why did they sell me premium support to July 2020? Do I loose what I bought or do they honor it till the expiration?
Hi,
i have a ssh Service connected via the internet.
But i would like to filter a bit, because there comes often automatical scans from china IPs and so on.
The devices who connect to the port 22 have a dynamic ip so i cant set a static source.
But i kno
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
