All,
We are migrating Policy based VPN's from Juniper Netscreen to Palo-Alto firewall. Please let us is Policy based VPN will be supported in palo-Alto , if not how we need migrate the Policies of Policy based VPN.
i work as a security specialist engineer at a moderate
enterprise.
recently my superiors have asked me to block whatsapp file transfer only(meaning chat would still work).
however i've tried anything using our Fw's but to no avail.
from what i have rea
...
We have a 5220 running 9.1.12-h3, and it has a 10 Gb vwire with multiple VLANs configured with managed switches on both sides.
There was a 13 Terrabyte copy across this vwire, and then as that was finishing, there was a 3 Terrabyte data copy. Both we
...
Hi,
PAN OS Version 10.2 support Advanced threat protection and its seems like , for any unknowns the metadata will be forwarded to cloud for deep learning mechanism (Correct me if i am wrong). My coroners are
Setting up a path monitor on a static route where source is a tunnel interface.
I am able to ping from CLI with tunnel interface IP as source. But the route does not get installed.
ping source 10.0.0.1 host 4.2.2.2
PING 4.2.2.2 (4.2.2.2) from 10.0.
Hi all,
How can I calculate the device memory usage of my device (PA-820)?
OS Version is 9.1.6
Thanks all
Hello,
As per the question, should we enable these features if we don't use SSL decryption. And also, we want to enable it on our Firewalls as well as our Prisma Access rules.
I am new to Palo Alto firewall. I have loaded Pan-OS 9 on eve-ng and connected one of it's port to router. It is layer three connectivity and have assigned ip to both ends. However I can't ping the firewall interface. OSPF neighborship is also not fo
...
Hello Team
When setting up a tunnel monitor
1) Can we monitor the remote encryption subnets?
2) Is there a way to failback to the primary tunnel when it recovers ( after failover to the secondary tunnel )
Thank you
NGFW
...
I might be overlooking something fundamental.
We are trying to slow-step out of another firewall into a PA. I have created an interface on the PA in the old subnet. I can ping across to the server and old firewall.
Clients behind the PA cannot ge
...
We are not able to login the support.paloaltonetworks.com site. When we try to resetting the password using mail id, we did not receive the password reset link on mail. Kindly help us to resolve this issue
If you found "shared policy & template" are "Not in Sync" with Panorama with the below validation errors.
Security group 'XXXXXXX' is not a valid reference
rulebase->xxx-> profile-setting is invalid
URL filtering profile -> is already in use
Th
...
I am facing a very strange issue. Thee are four ISP connected to PA. All are VLAN interfaces.
While doing a ping to 8.8.8.8 or any public IP from the vlan interface IP it works fine except for one ISP.
For one ISP if a ping a initiated from vlan.7
...
After upgrade to 9.1.15 in PA-220 it asks Constantly prompting for password change for only admin account. what is the reason for that?
BPry
on:
Block privileged accounts from accessing the Internet
reaper
on:
Need clarification on URL Filtering logs
reaper
on:
Layer 2 network extension
PavelK
on:
NGFW Threat & Traffics Log Fields
PavelK
on:
NIPS
