We have a business partner that wants to create an IPSec VPN tunnel with our PA-5050 using pre-shared keys, but they don't want to provide a Public IP address for us to peer with. Their other clients configure the remote peer address of 0.0.0.0 basi
...
Hi,
Is there anyone that can tell me which Firewall Change Management ( Skybox, Tufin, Algosec,.... ) is REALLY working with a PAN ?
Most of them claim they can do it, until you test it... nothing works...
Some of them announce PAN support for next year
...
Luigi,
Can you confirm DAGPusher name should match tag for DAG in PAN-OS? I can't have the DAG updated with Minemeld indicators
Thanks
Bertrand
Hi Guys,
We are seeing the traffic for the new subnet we added recently are coming as incomplete and need some help to troubleshoot this.
Cheers,
Mykhaylo
Greetings all.
We're in pre-deployment for our firewall and I'm attempting to get an Site-To-Site VPN tunnel set up to our VShield Edge setup in the cloud. I have a tunnel established but we can't seem to get anything across it.
Troubleshooting
...
Hi,
Am I correct when I state that a PAN firewall cannot set different timeouts per used port?
Fortigates and Junipers seem to have this option, where they can set their defaults and specify -if required, for certain ports.
On a PAN device, I don't thi
...
Just updated the FW to PAN OS 7.1.2. The UI looks very mordern !
The ACC page has been re-designed , looks better, is there any way to customise the panes ?
Does anyone have any best practives on how to configure Multi-Domain authentication with Global Protect? I see how to map/sync groups in multiple domains in my forest, but not entirely sure the process for the Global Protect end. Right now I am usi
...
Please be advised that we will be performing planned maintenance activity on the Live Community between 12:00 AM - 4:00 AM PDT, Friday, May 27th, 2016.
The Live Community response times may be delayed or intermittently unavailable at some points dur
I am a bit new at VPN stuff - I have a PAN-500, i configured VPN for users just fine (IPSec+xauth "cisco compatible" so it works with pretty much anything), as well as static site to site IPSec tunnels.
What I cannot figure out how to do is make my
...
Hi there,
maybe it's not that complicated but I didn't find a post for this scenario:
The LAN of our Clients are in Location1
(~ 200 km)
The LAN of our Servers are in Location2
Location1 and 2 are using the same firewall which is stored in Loca
...
Release Date: 2016-05-25
How to update: Updating MineMeld
Core
- we have introduced a new trace service to record indicators movements across the graph
Nodes
- STIX/TAXII Miner now supports client certificates, and TAXII user credentials can no
...
Is there a place to test out the 7.0-h2 console interface before upgrading, offered by PA?
Connect option grayed out under status tab on global protect client? Anyone know what the cause is and the fix?
OtakarKlier
on:
Understanding URL Filtering security profiles vs Rule Action
OtakarKlier
on:
Qualys scanner blocked
OtakarKlier
on:
Split-tunnel not working properly
OtakarKlier
on:
Palo HA with LACP to Cisco Stack Switch
aleksandar.asta
