General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 17237 Views
  • 44 replies
  • 32 Likes

Application block page - not enabled by default

I've noticed in PAN OS 5.x that the application block page is not enabled by default. Obviously it can be manually enabled.. but was this done for a specific reason to address some common problems experienced by customers?I could surmise that perhaps...

CMG by L2 Linker
  • 745 Views
  • 3 replies
  • 0 Likes

Resolved! Cannot log in after 5.0.5 upgrade

After upgrading from PAN-OS 5.0.4 to 5.0.5 and rebooting the primary 3020 of an HA pair, the logins we normally use tied to our Active Directory accounts are not working; they are giving us Invalid Logon messages. These Invalid Logon messages occur i...

Resolved! Virtual IP

HiWe have a scenario wherein we should create a virtual private IP in Palo Alto and that virtual IP will connect to a public IP. For example:PA LAN IP: 192.168.1.1PA PUBLIC IP: 9.9.9.9Firewall Virtual IP: 192.168.1.254Public IP: 1.2.3.4Users will con...

Resolved! iPad App fails to connect

I have the global protect license and an active global protect subscription. Windows Laptops, Mac Laptops, and Android devices (using the app) can connect and access network resources. However I try with the iPad and it fails immediately. I get "Cann...

nthen by L3 Networker
  • 1978 Views
  • 6 replies
  • 0 Likes

Resolved! Skype-probe rule catching other traffic

I have implemented the suggested Skype-Probe allow rule in order to block Skype. I have noticed that this rule will also catch traffic that is of the Application type Incomple and Insufficient-data. Just currious as to why it is ending up in this rul...

merrydc by L1 Bithead
  • 936 Views
  • 2 replies
  • 0 Likes

Resolved! Captive Portal Behavior

We have configured the captive portal for category 'Adult and Pornography' . Our question is, will the captive portal start every time or only when you are an unknown user? If the user is known (using Active Directory), is the user still being prompt...

bbsoc by L2 Linker
  • 1432 Views
  • 4 replies
  • 0 Likes

Global Protect and Android 4.0.4 - problem

HelloI have working VPN for Windows machines. I need to extend it for Android devices, using client from Android OS.I'm using login and passwords (not certs) in my VPN config.I followed by the GlobalProtect-Config-Android-RevB.pdf - part 3When I try ...

_slv_ by L4 Transporter
  • 1082 Views
  • 11 replies
  • 0 Likes

VBS/Virus.invadesys.(253879) - Potential False Positive?

Hi,Recently, on some of our clients we have been seeing the same threat / virus appear. The name is VBS/Virus.invadesys. and the ID is 253879.Some interesting things to note...The file-name is ALWAYS a bookmark file ending in .urlAll of the files sou...

dciccone by Not applicable
  • 1350 Views
  • 11 replies
  • 0 Likes

4050 HA Upgrade Question

Anyone with a HA 4050 Cluster, can you please tell me the pros/cons of code 5.0.3 and 5.0.6? I am looking to upgrade my HA pair and have noticed CPU imbalance issues, high management plane issues with 5.0.1 on my 500, 2050's. I want to upgrade but am...

Resolved! Unblock an ip after the block-ip action

Is there a way other than waiting for the timeout to expire to remove an ip from the list of blocked ip's once it is blocked by a rule with an action of block-ip? I hope that makes sense :smileyhappy:.Thanks,Jim

jmayne by Not applicable
  • 1831 Views
  • 4 replies
  • 0 Likes

User-ID stopped populating mappings - OS 4.0.12

I am running OS 4.0.12 and have an issu with the user-ID / mappings not populating in the logs. show user pan-agent statistics:IPs Activity Timer(s) Domain Indexncmpdcden01 10.250.12.10 5009 vsys1 *connected, ok 989 906651185 21844256 600 ncm 0show u...

Commit only a specific set of config changes?

Hi,Is there any way to commit just a specific set commands to the Palo without committing all changes that are pending? I have an in house written piece of software that is going to make content filtering changes to my Palo's via the XML API. My conc...

Gareth by L1 Bithead
  • 1274 Views
  • 4 replies
  • 0 Likes

Resolved! Question on Admin roles and what they see

We have an intern who we have given admin rights to our Palo Alto boxes and Panorama. I created a custom Intern role for him that just gave him access to the logs and reports and things but then read only to everything else. What is happening is when...

JeffTQT by L2 Linker
  • 804 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors