General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18306 Views
  • 41 replies
  • 32 Likes

Resolved! LDAP - Group Mapping with Child Domain users

Hi all,We'd like to use an Active Directory group in our root domain (e.g. "company.com") to control GlobalProtect authentications. Let's name this AD group "VPN Access" (it's a "Universal" Security Group). It contains user objects from the root doma...

oschuler by L4 Transporter
  • 2470 Views
  • 2 replies
  • 0 Likes

Resolved! M-100 Panorama Mode Collectors in HA

Probably an obvious question but the documentation doesn't seem to reference this directly...If I have 2 x M-100s in HA, by default they are in a state where the primary is listed within the "Managed Collectors". From what I understand the logs are n...

dmeier2 by Not applicable
  • 1099 Views
  • 2 replies
  • 0 Likes

Resolved! Block but don't log

Is there a way to block some vulnerabilities or spyware without logging them? For instance I would like to block all the Microsoft SQL Server Stack Overflow Vulnerability but I am tired of them skewing some of our charts and stats. it looks like I ca...

jmayne by Not applicable
  • 530 Views
  • 3 replies
  • 0 Likes

PAN OS and TACACS+

Hi There,Is it possible to tie together a PANOS and TACACS+ for authorization of commands? If not, how it possible to restrict access for some cisco network equipment? Any ideas?

no wildfire log entry

Hello allI have been creating a antivirus profile with alert action for all decoder for antivirus action and wildfire action.but I tried to obtain some logs in wildfire log entrie. May be I didn't request the good file on the web? How could I proceed...

Gregoux by L4 Transporter
  • 1513 Views
  • 15 replies
  • 0 Likes

Resolved! Question Regarding Reporting

Hi All!I'm responsible for Security Analysis at a Telecommunications company up in New England. We've recently deployed Palo Alto firewalls to all sites, and I am currently going through PDF Reports manually while we get Splunk installed.One thing th...

Resolved! PAN-OS 5.0.5 :Commit failed

Hello,I have upgrade my firewall from 5.0.1 to 5.0.5 successfully.But when I am trying to commit. It is giving below error.Operation CommitResult Failed Details vsys -> vsys1 -> global-protect -> global-protect-portal -> portal-tunnel -> client-confi...

u22443 by Not applicable
  • 619 Views
  • 3 replies
  • 0 Likes

Resolved! GP - second gateway creation problem

HiI have PA200 with 5.0.5 with ateway and portal licence.On untrust interface I have /26 networkTo set up another gateway I added second IP to my untrust interface. X.X.X.141 with /32 mas - is it correct?after commit I add new gateway profile and try...

_slv_ by L4 Transporter
  • 786 Views
  • 5 replies
  • 0 Likes

AET & PAN

Hi everybody,last week I had a Stonesoft engineer in my lab demonstrating their techniques of exploit attack via AET. I tested my PAN NFR units (PA-200 & PA-2050) with IPS license last update, together with other vendors IPS units, protecting 2 prett...

NGS_SOC by L3 Networker
  • 1305 Views
  • 5 replies
  • 0 Likes

Resolved! Active/Active HA3 Link Bandwith

Looking for advice on bandwidth for a A/A pair of 5050s running a 10G vwire. Should I burn another 10G port on the HA3 link or can I get away with 3 to 5G agg? Or is this really just one of those things I need to set up and monitor?

AlexZu by L1 Bithead
  • 2088 Views
  • 4 replies
  • 0 Likes

Resolved! what is wrong with blocking firefox

Hello all together,there something misterious for me becauseto block firefox i used this document https://live.paloaltonetworks.com/docs/DOC-5028 but with this config it hasn't been working so far.Is there a hand? My Config is:i tried it with enabled...

kdd by L4 Transporter
  • 1292 Views
  • 4 replies
  • 0 Likes

Routing through virtual systems

Hello,I have such situation that I need to make routing through virtual system. I added a network diagram below.Maybe you guys can help me in this situation.I want that traffic from Vsys2 can access GW_default as it can Vsys1. Also I want to control ...

aaputis by L0 Member
  • 441 Views
  • 1 replies
  • 0 Likes

Resolved! Connecting two L2 segments via PAN?

I am trying to connect two separate Layer2 segments using the same VLAN ID 569 and same IP subnet 10.10.69.0/24.The firewall has:ae1 (mode layer2) with members ethernet1/1 and ethernet1/2ae2 (mode layer2) with members ethernet1/5 and ethernet1/6VLAN ...

efellows by L1 Bithead
  • 886 Views
  • 3 replies
  • 0 Likes

Resolved! GP with Host detetion and auto-connect

Hi,PA 500 in 5.0.4 and GP client 1.2.3Would like to be sure, I need GP auto connexion from outside of my network and no GP in my network.Then configure my external gateway, my internal host detection. It works well.But short question do I need the GP...

VinceM by L5 Sessionator
  • 1648 Views
  • 5 replies
  • 0 Likes