To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...
Does PA not do DNS lookups on URL filtering? We have an FQDN being blocked as malware, but the site can be accessed if the IP address is used.thx//moe
Hi,We configured remote vpn access in our PA-3020, and we are experiencing some issues with Linux clients. People who are using Global-Protect client work fine, but people who use vpnc client suffer service disruption in SSH or using GIT repositories...
Sorry if this is really basic but...I have configuration where, we've added a gateway to a subnet that we only want one host to be able to access to get offsite. The gateway is on the other side of a vwire in the same subnet space obviously but in a ...
HI,This is only theoretical for me as I don't use captive portal (yet) but I noticed a problem. I am successfully authenticating pretty much all my users, but quite often I see a few flows at the start of a user session which doesn't have a user-id. ...
I have split tunneling setup on my PA-200. I have the logs being forwarded to Panorama. I would only like the logs from the Internet traffic to be forwarded to Panorama.I don't want the VPN tunnel traffic logs to be sent to Panorama.I have three secu...
From the Release Notes:Fixed an issue where a Log Collector group configured with local as the group name triggered a reboot loop. With this fix, local is no longer allowed for use as the name of a Log Collector group.That's great, but what happens i...
Hey all,Is it possible to create a any-ipv6 address object?I tried with an object "::/0" (same syntax used to configure default route) but this seems to hit any-ipv4 address as well.Tried this in PanOS6.0.10, PanOS6.1.3 and PanOS7.0.0.0b23
HelloYou can download a copy from http://connect.paloaltonetworks.com/nssreport-successHas anyone link from such test for other vendors (from this year tests)?You can compare it with https://info.sourcefire.com/NSSLabs_NGFW.htmlRegardsSlawek
Hi, i have 2 palo alto 2050 in HA (active/passive). The active HA has intenet acces in order to take the palo lato updates but the passive PA doesnt have access to internet. The problem is that the active PA has a URL version updated but the passive ...
Is there an easy way to view all packets that have been dropped by Anti Spoofing?
Hello everyone,I have questions about global protect internal gateway.1. What difference are between tunnel mode and non tunnel mode on internal gateway?Encrypted? or Something?2.If customer does not use external gateway, Can I set external gateway i...
I am trying to assign a external cert to the webui so I don't get the warning message anymore? I imported my cert to the primary box and the setting did not fully synchronize to the passive box. I noticed there is an import and an import HA, do I hav...
Hi all,We're evaluating new IT hardware for some small/mid-sized branch offices in Asia. If we compare the PA-200 and PA-500 (Link) we don't see a technical limitation when using PA-200s instead of PA-500s. Most branch offices don't have Internet con...
hello I would like to block zipped file with password protection or if the zipped is more than twice zipped.a solution for that?thanks
Hi there!Who knows anything about this error?PAN-OS 6.1.1.
on:
Properly routing IPv6 across site-to-site IPSEC tunnel
on:
Creating an Authenticated Tunnel from One Internal Zone to Another Internal Zone
on:
IKE Error
on:
Fetch change request from cherwell using python
on:
Log interface configuration under PA FW
on:
Site-to-Site IPSEC issue and MTU
| Subject | Likes |
|---|---|
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes |
