Hi, I have just configured my PA 500 and I set up the management IP to be 10.2.82.3/24. I connected the PA 500 to a switch that has VLAN 80 (10.2.80.x) and VLAN 82 (10.2.82.x) my laptop is ip'ed 10.2.80.40/24, from the laptop I can ping 10.2.82.1 (de
...
GP VPN configured properly with IPSec enabled.
But all the GP-clients are fall-back to SSL tunnel mode soon after connected.
For testing purpose, give full access any-any allow in policy. one time connected as IPSec and when disconnect & connect again
...
I am wondering if it is possible to create a report based on the number and type of "System" (Medium, High, Critical) alerts generated by the PA firewall?
Hi All,
One of our FQDN records keeps wrong ip address (e.g 10.1.12.71) where really it should be 1x6.1x8.1x0.1xx:
> request system fqdn show gives me below output:
When l ping the same FQDN from the FW l get a correct ip address mapping:
> reques
...
Palo version:
vm-license: VM-100 vm-mode: VMWare ESXi sw-version: 8.0.4
I am trying to do a partial commit after a change on policy rules.
The following commands usually work. But for some reason, I ended in a state where partial commit/validate is not
...
In the following link, it is stated that an Active-Secondary Panorama can perform all the functions of an Active-Primary Panorama, except for two things, one of them which is the ability to perform "manage firewall deployment functions" such as lic
...
Hi There,
Not sure what's the right place to report this false-positive.
I would like to draw urgent attention of Paloalto Networks staff to resolve following false-positive on one of Comodo Internet Security files:
Virus Total (1/64)
https://www.virusto
we are facing problem with PA 7.0.7 version , custom url category is mapped to security and certain URLS are allowed . when traffic passes the policy some of the traffics are allowed and then it hits the deny rule . The size of the packet becomes les
...
I just became aware of this yesterday, but we were seeing a rise recently in "unknown-udp" traffic on our Palo Alto Firewalls and have discovered what it was. The amount of traffic was significant - always used the more bandwidth than anything else
...
Hi,
Is someone able to shed some ligh on the below.
1. Can SAML be used to map to an LDAP group, if so is there guidance?
2. Does PAN support using SAML AND prelogon/alwayson with GP?
Thanks
Hello
I observed that in my reports in pdf I have a lot of "unknown" in CATEGORY column.
My report looks like:
How is possible that google-base or linkedin-base have category=unknown ?
Regards
Slawek
Hi,
Hello,
We are having a annoying issue :S We have configured a tunnel routed-based between PA (7.0.6) to Microsof azure. The tunnel is up but we are detecting several problems.
1) The transfer speeds are very low, fluctuate and are nothing stable
...
Hi,
My URL filtering response pages never appear, even the default ones.
Is there anything to do to activate them ? I always have the "This site can’t be reached" message with a connection reset.
Thanks
HI All,
I have used the below link to configure Syslog miner, but metrics are not showing up in stats.
https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262
I have tried to troubleshoot using following discussi
...
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
OtakarKlier
on:
Palo HA with LACP to Cisco Stack Switch
aleksandar.asta
