My PA500 is currently on PanOS version 7.1.7, can I upgrade driectly to version 8.0.2?Or do I need to upgrade to verion 8.0.0 first and then version 8.0.2? Thanks for your help.
help me please.config ip pool for client access but commit failcommit log messageOperation CommitResult FailedDetailsmissing ip pool from both dynamic ip pool and authentication server ip pool for config 'default' in gateway GP-Gateway (tunnel GP-Gateway-N)(Module: rasmgr)Commit failedrasmgr log message2015-07-10 17:52:29.746 +0700 rasmgr: rasmg...
Hi all!i'm new in this community and we have put in work 2 PA-3020.I configured ELK for log forwarding.i've search every log and i couldn't find a filed with the url theat a user is visiting. Is there a way to achieve that.Example! Now i'm writing from this url: https://live.paloaltonetworks.com/t5/forums/postpage/choose-node/true/interaction-st...
Palo alto is perimeter to customer which is connected to isp firewall.Internal subnet traffics which are not allowed in isp/ untrust interface are hitted in isp firewall.Routing is proper. ARP is proper in isp interface( only next hop arp is there)Implicit deny policy blocking the interzone traffic trust to untrust.We don't have any clue how our...
When Secondary Firewall became active, management plane utilization is not more than 10% for over months.Last week manual failover made, Primary is active now. MP utilization is above 60% all the time. All the configurations are same as it's in HA. Both firewall has 10+ unused FQDN objects and FQDN refresh happening for every 30 seconds eventhou...
I just wanted to check with anyone that can answer, that when the URL license expires, the whole feature is disabled in PanOS 8.0.1. It used to be different, the URL filtering would still work, but there were no more updates of the database. Thanks!
Why is it for network / interface / <some interface> I can't use a name for a zone. I wanted to have a template that had all of my zones in it, but unlike policies and objects there is no shared attribute. Which means I have recreate my zones for each template I have interface definitions. Am I missing something ??
Hi, I need to confirm whether the PA-220 is able to aggregate 2 interfaces or more in a LAG (LACP). I was able to find out that the PA-200 does not support aggregating interfaces with LACP, but the PA-220 is rather new and I have not been able to find a definitive statement about it. The product comparison indicates that it should be suported on...
I have been tweeking reports on these Palos we purchases (3020) and trying to find a good Web Browsing/Filtering report to provide for senior management that will encompass top xx users with most visited external sites, preferrably with the duration on each site; However, as of yet I have not been able to customize a report that is easy to read ...
We have been tasked to follow the CIS benchmark for our Palo Alto firewalls. One item is to limit access to specific IP addresses for the Management port. That is easy enough if the only thing using the management port was users connecting to manage the firewall itself. My question is what other services use the management port (Panorama, User-I...
I have downloaded and installed the latest GlobalProtect for Mac. The install does not show any errors, but the agent does not seem to have started. Rebooted and installed again, but still no joy. I am running 10.12.5, Sierra on a 2010 Mac Mini with 8GB of RAM.
Palo Alto is currently logging URLs which includes a path such as webserver.com/code.exe?id=4 but Palo is capable of logging a message that would display just the code.exe filename as well as a content type such as application/x-octet-stream or ms-executable. I would like to have these FILE events. Does anyone have insight into this for a palo...
Hi I am about to import my config from a PA into panorama. Now with shared objects, how do you manage them, can you delete them, I haven't found a way to do it via the web uiHow do change it from shared to non shared or the reverse ?
Hello everyone, recently, i have access the acces for a palo alto Pa 500 i made the upgrade from 7.1.8 to 8.0.2, but now i need to do the configuration for a native vpn, for conect some iphone´s, but i dont have idea how to do this, there is anyone how can help me or any link more explicit about how to do it, i dont know some terms. i hope you...
Hello All, Need help 1. Decryption is not working in IOS device2. Outlook is not working in Android via decryption
| Subject | Likes |
|---|---|
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes |
