General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 21876 Views
  • 43 replies
  • 32 Likes

site-to-site vpn from Sophos

IKE coming from a Sophos device is incorrectly identified as application ciscovpn instead of application ike.Is this because Sophos uses cisco-ish protocol ? All I see in the logs is udp 500...I'm happy allowing application ike, our other site-to-sit...

dieter_b by L4 Transporter
  • 911 Views
  • 3 replies
  • 0 Likes

Ignore usernames that start with sophos?

On our servers we have the User-ID being mapped as companyname.com\sophosCOMPUTERNAMESophos is our AV software which uses that account for getting updates. Is there anyway for me to add any names beginning as sophos to my ignore_user_list.txt?

pmc by L2 Linker
  • 660 Views
  • 1 replies
  • 0 Likes

DShield top 20

Is anyone currently using this dshield top 20 list subscription? How well does it work/ Is anyone blocking inbound, outbound or both? What is the best way to configure it?

jdprovine by L4 Transporter
  • 1059 Views
  • 6 replies
  • 0 Likes

YouTube Safety Mode

Hello,Right now we are using Safe search enforcement for staff and students. We allow YouTube for both groups but require Safety Mode to be enabled. However, we have been running into a lot of issues with YouTube flagging videos as inappropriate even...

Unblock IP address after threat triggered block-ip

Suppose a long time value was set for a threat where one had set the action to block-ip - say 10 minutesIs there any way via the CLI or GUI to see the list of IP addresses that are blocked due to the threat engine?Better still, is there a way to clea...

How to find active high bandwidth user

If a Palo Alto firewall is experiencing high throughput, what's the best way to find the source user/IP while the high throughput is occurring?We have all of our security policies set to log on session end, so that traffic log wouldn't help since the...

jambulo by L4 Transporter
  • 1013 Views
  • 2 replies
  • 0 Likes

How many security rule supported for PA7050?

Hi guys.Nowadays I have got a project for installing PA7050 but I confused about the PA7050 how many security rule supported for PA7050. Several months ago, I checked the DataSheet and Compare tools of PA7050 that mentioned PA7050 supported 80,000 ru...

Resolved! Panorama Application and Antivirus discrepancy!

Currently our Panorama General Information window on the dashboard is showing the following:Device Name: SA-PANMGMT1Application version: 489-2600 (03/03/15)Antivirus Version: 1503-1978 (03/10/15)I change context to one of our two firewalls (both the ...

Crash28 by L1 Bithead
  • 691 Views
  • 1 replies
  • 0 Likes

Site to site VPN with isa server firewall

Dear Friends,I am facing some challenge, vpn configuration with ISA server firewall. Ph-1 is up but PH-2 is not. when i put the proxy id both side firewall external ip , both Ph is up. when i put the LAN segment like (local 172.30.30.0/24 remote 192....

Satish by L4 Transporter
  • 496 Views
  • 1 replies
  • 0 Likes

The Check Point Advantage

3 years ago, we replaced Check Point firewalls with Palo Alto Networks.Seems this was a huge mistake. We might have to go back …..The Check Point Advantage"Palo Alto Networks, a newcomer to security, falls short in their architecture and solutions" A...

Dulle by L2 Linker
  • 2784 Views
  • 5 replies
  • 1 Likes

Interface Names (for purposes of SNMP)

Is there any way to change the name or description of an interface in the device configuration? We use What's Up Gold to monitor most devices on our network- it walks SNMP and retrieves the default names just fine (mgmt, ha1, ethernet1/1, ethernet1/2...

ShaunD by L1 Bithead
  • 1612 Views
  • 2 replies
  • 0 Likes

Resolved! LACP and HA pair

My tested design has been to LACP between the same LAG (i.e. AE0) on the PA primary and secondary units, to different LAG entries (ie. AE0, AE1) on the outside and inside equipment (Both Juniper). I have one device though (Juniper SRX) that has VPN t...

Top Solution Authors
Top Liked Authors