Hi Team,
We are managing VM-firewalls which are NGFW on CSX platform (Cloud), how to do we confirm that our version is Cloud NGFW and not affected.
Custom URL category containing one line similar to this:
abc.com/string1-string2/string3-string4/string5
After the domain name are a series of strings with some dashes and forward slashes. String5 is meant to be a filename in the string3-string4 dire
...
We have connected site to site VPN tunnel with remote peered using policy based. so ca we monitor this IPsec VPN tunnel if it goes down with some trigger mechanism over email.
Hey Community,
My environment recently went through some changes requiring it to be shutdown for a few months and be moved to a new location. It is now settled in and back up, however we still do not have internet yet and I want to start patching the
...
we have paloalto HA configured and i configured snmp server trap profile in primary firewall. when i pull data from snmp manager it successfully pull data from primary firewall. but when i tried to pull data from secondary it shows me credential wron
...
Hi All,
We are facing an issue where IKE phase-1 negotiation has failed as the initiator in aggressive mode. The SA (Security Association) has failed between 199.X.X.X [500] and 162.X.X.X [500], with the cookie: fa14dad50518163e:0000000000. Can someon
Hello everyone,
my name is Phil and I am in charge of the network structure in a municipal utility with 2 other people. We have 2 PA-3220s with software version 11.0.2-h2 and several PA-400s in use.
We are faced with the following problem:
We want to
Is it possible for the Palo Alto firewall to decrypt inbound traffic and deliver decrypted text to the internal server? I don't want the traffic to be re-encrypted after PA analysis.
Is it possible to decrypt inbound traffic and re-encrypt it with
...
Trying to determine which PAN-OS I am going to install. How do I determine if I am to select 5400f or 5400? This is for a 5410.
We have users that are able to download games from url site not classified as games on their work laptops to their personal folder on the fileserver. Is there anyway to restrict access to .exe file downloads and use without having to have a huge exce
...
Greetings,
i have some doubts in configuring sub interface. i have eth1/1 (physical interface)ip-10.0.2.1 now for some testing i want to configure a sub interface for eth1/1 with same subnet like 10.0.2.2 and without vlan tag.
will this work ???
...
I was trying to upgrade a PA220 from 9.1.X to 10.1.12.
The Plan is to upgrade to 10.0.0(Install &Reboot) --->10.1.0 -->10.1.12(Install & Reboot)
After upgrading to 10.0.0, auto-commit completed and system is up and running without any issue. Howe
...
The customer configures inbound decryption on the firewall.
When the decrypted traffic exceeds the processing performance of the firewall,
the firewall will not decrypt the traffic that needs to be decrypted. Will it be processed as normal traffic?
C...
Hey community,
We have a dual ISP environment, when one is used as a backup if the primary line stops working.
I'm wondering what would be the best approach to configure HA in this situation (on the VR). I did it with path monitoring as it seems much
...
I have a PA440 running PanOS 10.1.3, it seems to be processing traffic normally, but I cannot reach the GUI, it seems stuck at this loading page. The external interface is pinging just fine. I have CLI access, what command lines can I run to troubles
...
BPry
on:
Custom URL Category Not working Properly
OtakarKlier
on:
4-Node Cluster (2x Active/Active) and "orphaned" zone
