Hi,Users complain about the office365 outlook connectivity ,slow submission of email . From PA prespecive what need to be verified and make sure there is nothing from the PA side . Thanks
Suppose I wanted to create object group "blob" with 10.10.10.5 .6 .7 8. .9 - and I'm working in the PAN GUI- is there a way to paste those five addresses into the address group? It seems like my only option is to clickAdd (obj group) Add (address) and then fill at least two fields Name and ip address/mask. I know I can do this out at the CLI. Bu...
Why Palo is not sinkholing DNS queries to the kill switch URLs? Currently if I run a DNS lookup request for the kill switch URL, it come back with the valid DNS response. shouldn't this be sinkholed? When the guy "accidentally" found the kill switch, I thought, Palo would be able to do this as well. But alas, it didn't and still hasn't yet, I gu...
Hello. There is a question about OSPF adjacency flapping caused by minor changes in OSPF process. I planned data-center deployment of PA-5060 HA-cluster. In this plan PA-5060 needs to be attached to OSPF AREA 0, and multiple NSSA areas in different security zones. Number of multiple areas non constant and in will be increasing in the future wit...
Saw this notice on the dshield page the other day that they will be blocking generic pulls from agents if they don't have contact info in the script. Still learning about minemeld but know dshield is one of the default miners and was just wondering how this information affects its use going forward? https://www.dshield.org/forums/diary/Read+T...
Hello, I have a dev and prod instance of MM. Noticed both dev and prod behaving the same way, where many indicators were not showing up in output feed for AWS miners. Config on both is the following: nodes: aws_route53_miner: inputs: [] output: true prototype: aws.ROUTE53 aws_ipv4_output: inputs: - aws_ipv4_aggreg...
What is the difference between pre rules and post rules ? None of my colleagues could answer this question upto my satisfaction.Can I expect expert comments ?
In our environment, there is a PA between Minemeld and the Internet, so PA access control. Would you please tell me the subject URL and port number ? (A specific external feed becomes O365 is https://paloaltonetworks.box.com/s/gndwe5rzheg1ekwplxb4m3mrpcf5k41f) Regards, Naoya
Hi,After egress max set in the following order ,If 100 Mb is the internet speed and through the trust link (1 GB) traffic is going other than untrust ( internet zone ) , the below configuration is ok ? . class 1 10class 2 10class 3 10class 4 40class 5 10class 6 10class 7 5 class 8 5 Thanks
Hi Newbie to PA. I want to create a address group dynamic (think that might be best. made up from a group of network addresses in each DC. So for example if I have 3 DC dc1 - 10.1.0.0/16dc2 - 10.2.0.0/16dc3 - 10.3.0.0/16 I could tag them with "dc_network" Looking at dc3 I could make that a dynamic group say 10.3.1.0/2410.3.10.0/2410.3.100.0/24...
IKE is failing to negoriate phase 1. I get this timeout and then a delete. Any thoughts on the possible cause? I'm thinkingthe peer is perhaps not permitting the traffic from this device perhaps at a security device in front of their tunneling firewall (ASA). ? May 11th 2017, 10:39:04.000 <14>May 11 10:39:04 172.19.5.38 prdfw100-pri.inter...
In our environment we use tags on individual IP addresses for a few different things and then have policies in place to take those actions based on those tags. Sometimes we have requests come in with a lot of indivudla IP addresses that we have to add and tag in multiple VSYS's. This is tedious and time consuming because the only way I know how ...
Another one, Split Tunneling simply doesn't work: When trying to access resources on the Internet (google.com) all traffic is routed to the tunnel where no policy for the Internet access, hence no internet.
estimados, alguien que pueda ayudarme a permitir el acceso a vimeo.com ? al intentar ingresar a esta pagina me aparece un error de certificado ssl:Este sitio no puede proporcionar una conexión seguravimeo.com envió una respuesta no válida. Intenta ejecutar el Diagnóstico de red de Windows.ERR_SSL_PROTOCOL_ERROR
Dears, Since two days i am getting this message "iph1->ivm == NULL" and all VPN with ASA on the other side is facing iKE Phase 1 time out
