How do you configure the globalprotect VPN's so they won't route on the internal network but will only let users access it from outside the internal network
My HA 3050 pair is currently running 7.1.5 and I am planning an upgrade spree.
The upgrade process that I read seems straight-forward. My main concerns are with IPSEC tunnels and GP clients.
My options right now are upgrading to 7.1.9 or just going t
...
Hello,
I am trying to design a new solution in our network infrastructure. Here's are the requirements:
- Single ISP -- Two active Internet circutis --- (Corrected from Two ISPs to a single ISP)
- Current topology: Two Internet circutis connected to
Hi All,
Does anybody aware of an application that I can use to add high numbered ports in Palo Alto Firewall.
Hi,
Reading the Security Advisory PAN-SA-2017-0012 product affected listed PAN-OS 7.1 and 8.0. Can PAN clarify the specific version of PANOS 7.1.x and 8.0.x affected ?
Thanks,
E
For some reason, I had to RMA my PAN-200 which is used to demonstrate PAN-OS features. My previous box was 7.0.3 but before the upgrade between 7.0.2 to 7.0.3, I noticed that 7.0.0 was no longer available in the Software list in the Device tab.
The
...
Hi All!
i am trying to activate URL Filtering from PAN-DB, but i have problems.
I upload the license manually and i haven't error, but when i try to download the database this error appear:"URL database download: not available."
Then i do the "Retrieve
...
Hi,
I´ve a A/A Cluster Setup, where the firewall 0 is primary and the most traffic goes that way.
We use OSPF for the routing over the VPN tunnel and some tunnel are configured with a better metric over
the secondary firewall. We want to make some load
...
Hey Experts,
l am looking for some advice. One of our HA pairs was out of sync for about 6-7 hours. Every time l tried to sync manually from active>passive it was failing. Got some logs from the active box and can see a bunch of errors but not sure w
...
Hello Everyone, I did not manage to get this information in other online resources and in Wildfire -> General Settings does not seem to have this option. Hence I am asking for your help on these questions:
I've already read the articles in the live community for starters. Never setup a branch office before. This new branch office has 2 isp's and 1 VPN tunnel from there to HQ. I have the firewall completely configured already for using 1 ISP and the 1 V
...
Hello,
What’s the best way to generate security policy report to only show the listing of all the Security Policy rules on a PAN?
I used the custom report and selected Source Zone, Destination Zone, Rule, and Application(also, played with adding o
...
Hi !
We would like to install 2 GlobalProtect portals:
- one for the connection to the internal network since the outside with a VPN by using the GlobalProtect client ;
- one for the connection to the internal network with the GlobalProtect client, in
...
Hi all
I've got a cluster of PAFW 3020's that are connected upstream to a virtual f5 instance and I am testing some failover/HA scenarios. I have link monitoring set up as enabled and failure condition of 'ANY' with 1 link group (group 1) containing
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
