Traps - Upgrading agents not working
Hi, We are trying to upgrade agents to version 4.0.3 but its not working. Its failed. I attach an image. How can we know whats happening?any logs???
Hi, We are trying to upgrade agents to version 4.0.3 but its not working. Its failed. I attach an image. How can we know whats happening?any logs???
Hello, I found how to add a new administrator. But I want this new administrator to get only read access on everything and write access on a miner - in order to add indicators (IPv4 and URL) on it. Do you know if it is possible ? and how ?
I have a output feed that is serving up a list of URL's but I need to have http:// and https:// removed from the feed. It looks like I can use the ?v=panosurl output feed parameter but I am missing how to go about this when using the Autofocus hosted Minemeld. Any help is appreciated.
Hello, I have a PA-VM running on a ESX server.I want to set up SSL Decryption on it using a SUBCA certificate chain signed by a PKI (windows server).I check boxes "Forward to trust/untrusted certifcate"I export the SUBCA to store it on a client machine (to avoid warning message)The network is OKThe policy is Any any permitThe SSL decryption poli...
I need to know the minimal system requirements to run Minemeld on Ubuntu 14.04 LTS. How big does the HDD need to be and how many CPU's and RAM is needed minimal ?
Hi, It came to my attention that our IP address: 94.23.154.203 according to paloalto geo database appears as it is located in Russian Federation, whereas RIPE and ARIN, NIC, maxmind and others state correctly it is a United Kingdom based IP address.This is problematic for us, as some of the clients of your firewall solutions block traffic from/t...
Hi folks, I am being asked to setup a new IPSec VPN Tunnel and one of the questions from their "worksheet" is what our Tunnel interface IP address is. We have several IPSec VPN tunnels, each with their respective Tunnel Interface assigned. Most of them do not have a specific static IP assigned to there tunnel interface, only a couple. These we...
We are trying to add rules for Tridium Niagara application. What will be app-ids for TCP/1911 and TCP/4911? Thank you for you help.
Hello, Just a quick question. Unsure if this has been asked previously. When applying a non-reoccuring schedule to a security policy, I have noticed in pan 8.0.x, once the schedule has expired, the policy in the security policy view does not identify it as expired. I am trying avoid the obvious scenario of temporary policies being applied eit...
Hi, I would like to clarify the maximum number of rule/policies per vsys in PA 5220. As I noticed that 5220 supported up to 20k rulea per device. So, is there any limit of rule per vsys? https://live.paloaltonetworks.com/t5/Learning-Articles/What-is-the-Maximum-Number-of-Rule-Objects-Supported/ta-p/60774 Thanks.
Guest network (10.10.10.0/24) is in Outside zone & Internet link (11.11.11.11/24) is also in same zone.Guests need to browse internet (say google.com)My question is about intra-zone source NAT/PAT!Guest, who is the source of the traffic; requires translation to public IP address (say outside interface of the firewall).Destination of the traf...
I have Site A setup with a site-to-site VPN with Site B. Site A contains all the resources (DC, email, fileserver, etc). The firewall in site B is configured as DHCP for the local clients. Primary DNS is setup for internal AD DC/DNS server. Secondary is public DNS servers. We noticed randomly clients can not access certain local resources. Unab...
We are moving to Office 365 Exchange Online and may use some other Office 365 services in the near future such as SharePoint Online or OneDrive for Business. I found the FAQ "Office 365 Access Control" and have configured the requisite custom application and a security policy rule; however, since we haven't fully rolled out TLS decryption yet, I...
Has anyone had a problem with the group mapping authentication process? We have successfully connected to our AD/LDAP, PA sees the groups and group members, however this connection and the associated mapping fails after the initial connection. In addtion, if we try to map a second AD group, PA fails to traverse the group for users and breaks the...
New install of dual PAN 3020s on 8.0.2 that went really well for the most part and the only issue I am having now is imap(s) and Linux clients w/office 365 not working right. I have a 'known ok' rule with outlook-web-online (among other allowed apps -- ssl included) using app-default but I get tcp-resets from the far end and users are not able...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

