Resolved! PA to ASA Proxy-ID Mismatch

Hi all,

We have a standard IPSec tunnel one of our smaller sites with a strange issue related to the Proxy-IDs defined on the PA side of the tunnel. Our ASA side (10.7.0.0/16) is set to inherit all policy settings from the PA side, and our PA defines

Resolved! Best way to save new config, so they can be loaded and committed later?

Hello friends, 

I have a question about saving my firewall changes and then applying them at a later date. What I want to do, is enter all my changes into a production firewall, but then not commit them. I want to save just my changes, ie a small con

Resolved! How to solve "CWE-693 : Protection Mechanism Failure" in Paloalto firewall

Hello Geeks,

During our compliance scanning (PCI-DSS External Scanning) process on our paloalto 3020 firewalls, the scanner found new vulnerability, "CWE-693 : Protection Mechanism Failure" and suggested to fix it ASAP to comply. Hence, I started goo

Resolved! "Engine Fatal" error message in minemeld

I have install MineMeld on Ubuntu Server 14.04, I'm getting a fatal engine error message.

I tried to restart the service but no luck.

Please assist.

Resolved! Blocking Web Advertisements with an External Dynamic List

Hello everyone,

I am attempting to block web advertisements on our PA-3020. We have two of these devices which utilize Panorama. We have blocked anything categorized as "web-advertisement" on the firewall, which is great, but a ton of ads are still g

Resolved! QOS and internet traffic

Can PANOS controll / rate limit  internet downloads ?

On my squid boxes I can ratelimit and it does this by delaying acks.

Can the PA QOS do this work as well ?

Resolved! How to Change network address of running MineMeld server

Hello,

I have a MineMeld server working perfectly with different nodes (O365, Zeus, etc). It has an IP address like: 192.168.1.xxx but now I want to change to a different VLAN ex: 192.168.99.xxx

So what is the process to change this correctly to work

Resolved! How-to delete a policy-based forwarding rule from CLI

I'm trying to find the correct syntax to delete a policy based forwarding rule from a PA firewall via the CLI.  having a really hard time formulating this from the CLI reference.

How would i do this by referencing the ID.

also, this firewall is manag

Resolved! Global Protect include a specific URL?

Hey folks,

This is a follow up question from one of my other posts.  We are using PAN-OS 7.1.15 and GP client 4.1.

https://live.paloaltonetworks.com/t5/General-Topics/GlobalProtect-and-general-Internet-access/td-p/207888

We are moving to Okta as our I