General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Can't join Windows Updates server, application "not applicable"

Hi !

I'm trying to connect the server to the Internet in order to download and to install updates. My server is a Windows Server 2016, so i'm trying to reach Windows Updates servers.

In order to do that, I created a rule in the firewall :

The address

...

Adding a section title to a group of rules

Hello,

is there a way of adding a title/header to a group of rules in order to create some logical structure/grouping in the rule set?

In Checkpoint this is possible and we find that it helps keeping a big ruleset organised.

Thank you.

Whats wrong with my xpath??

Hi all, trying to delete a single object from a static address-group. Why does it keep deleting entire group?? My syntax below:

https://x.x.x.x/api/?type=config&action=delete&key=LUFRPT1BeWFJamVEYmdUV0JXZTdjNlFzOUMzdmhOaXM9RkdEb0lMT1g1WVNhMk9mL3&xpa

...

Using unlicensed VM100.

I have a VM-100 on VMWare ESXi running 7.0.4 . The demo license has expired for VM.

Would I be able to us it for testing still ( not using any url,threat features). I am see speed issue from trust to untrust

and traffic just trickles.

How can I get dual ISP with DUAL IPSEC Tunnel to work with static routes and no tunnel monitor?

HI,

How can I get dual ISP with DUAL IPSEC Tunnel to work with static routes and no tunnel monitor? I want the IPSEC tunnel to only failover when the primary circuit goes down. Problem I am having is the static route metrics is not taking over when t

...

FQDN jobs FAILED

Hi,

We have added several FQDN objects and its not working. If we run

update.symantec.com (Objectname update.symantec.com):

Not resolved

us.archive.ubuntu.com (Objectname us.archive.ubuntu.com):

Not used

xxxxxxx (Objectname HOST_xxxx13):

Not resolved

2017

...

Resolved! IDM application blocking in firewall

Hello

Anyone have solution for blocking internet download manager application accessing through firewall.

Thanks

pallavi

Resolved! Panorama Managed devices - URL Filtering version in "red"

Hello,

We use panorama. Why we see some URL Filtering version numbers in RED at "Managed Devices" ?

(Some boxes have older versions and are not RED....)

Resolved! High number of logins to AD

Good day,

Is it normal for the account that the FW uses to get the user-id information from AD to have a high number of logins? Across our entire network, this account is over 90% of all of our successful logins. It just seems that this account is lo

...

Resolved! LAN users cannot reach GP users

Hi All,

I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.

Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN.

The tunnel of the GP doesn't have an IP addre

...

How to disconnect remote users at a specific hour

Goodmorning,

I need to disconnect one or more users from Global Protect VPN at a specific hour.

I try to explain, I don't want that after 7pm the remote suppliers can work on my net. I can't use the scheduled policy rules becouse the sessions started b

...

Resolved! URL Filtering Issue

Hi,

Without URL Filtering in the Security Profile of the policy, we can access vimeo.com but with URL filtering profile, getting error message below in IE, Chrome and also on the phone. No proxy used, no SSL decryption. This is happening to the categ

...

Source zone - source address

If you enter a specific source zone but any for the source address what traffic is really allowed? Does is only allow addresses that are listed in the specified zone or is it truly any IP address?

Feature Request - Security Profile policy

Hi,

One thing about configuring security profiles is that when I like to change a security profile, there are so many security rules to update with the correct profile. I know I can change the profile itself and all policies using that profile will b

...

Problem Global Protect Behind NAT

Hello I have the following scenario:

-PA-3020 Edge Firewall who provide as internet access

-PA-200 LAN Firewall behind PA-3020

We are triying to configure Global Protect access for GP-200.

-I have a fqdn for the portal and gateway access which resolve

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free