Hi,
I would like to know is Palo Firewall able to monitor subinterface and vsys any status with SNMP?
Thank you
hello 2 all,
i've a strange behaviour with my edge-palo-alto firewall:
we've enabled a captive portal on the inside (lan) interface with redirect, working as expected...
but when i enable the response-page on the outside (wan) interface followi
...
Hello,
We have a weird rule in our Security Rules list.
Basically it's allowing any to any with some specific applications, but also a custom URL Category in "Service/URL Category" tab.
So normally it should allow only the traffic hitting the U
...
Hello,
Was wondering if PA does this automatically or if it needs to be done manually - blocking TLD .zip and .mov?
We use the Advanced URL and DNS Security license as well.
Thank you.
Hi all,
We have a set of NGFWs that somehow are pointed to an old tenant ID and therefor not dropping the logs into the CDL. We have put in a TAC case but haven't gotten any resolution as of yet.
Is there a way in the CLI to change the tenant ID?
...
Hi,
I received a quote from a supplier for 2 PA-850s with Wildfire , Partner enabled premium support and GlobalProtect subscription.
Then for the PA - 440 - Wildfire , GlobalProtect , advanced Url filtering , advanced threat protection and premium supp
Hi,
We have a got a new Palo Alto NGFW in our Premises and configured with LDAP for authentication. Things were good with LDAP for authentication until we started looking for MFA. I couldn't find any document to have LDAP and DUO/OKTA for MFA. As thi
...
Hey all, I've set up User-ID with on-prem AD servers a few times - quite straightforward.
My question is, how do I set up User-ID when my customer uses Azure AD (with no on-prem servers)? I need to someone get the user-to-IP mappings on the firewal
...
Hi All,
We want to add new User ID Agent to our Palo Alto Firewalls and remove the existing user ID Agent from Firewalls.
The reason is the current User-ID Agent is hosted on Window 2012 and we are going to decom that Window server.
We will install n
...
Hi ,
We've setup Site to Site IPsec VPN between Palo Alto Firewalls. The tunnel was up and working but it went down after some time.
Look like the tunnel went down because there is no traffic passing through the tunnel. Everytime we need to trigger
...
I have set my VPN access with no split tunnel so the users gets their internet access through the access through the VPN. Even though I cloned the security rule to the internet from the one used when you are onsite, it does not give the same access t
...
Hello everyone, wanted to deploy a pair of PA-450s in HA and I understand there are no dedicated HA ports on this model so we need use data ports - I could not find a deployment guide for the PA-450 to address HA specifically and I assume you could u
...
Hi Friends,
We have a requirement we have cloud server Oracle cloud
When ever user from LAN tries to access the resources over the cloud user is able to login but unable to access any resources.
While checking in logs it is showing tcp-rst-from-cli
...
Hello All,
I'm trying to spec the SFP's for PA-5410's & per the below documentation.
https://docs.paloaltonetworks.com/hardware/pa-5400-hardware-reference/pa-5400-series-firewall-overvi...
The HSCI port is a 40G port & Palo Alto Networks recom
...
PA-32xx series with 10.1.9 (issue showed up after upgrade)
There is long-lasting SSH session where only something like keepalive is sent every 5 minutes or so. With hardware offload enabled, this traffic is not registered in the dataplane (session st
...
OtakarKlier
on:
Minor patch release date for 11.1.8
BPry
on:
Compatibility of New GlobalProtect Client with Older Firewall/Prisma Access Versions
BPry
on:
Software Version 11.1.5-h1 commit issue
BPry
on:
Custom URL Category Not working Properly
