About KiCheon.Lee

KiCheon.Lee · ‎07-28-2013

Hello There are Device-A , Device-B and Device-C FWs. All FWs forward all logs to Panorama. I want to look ACC included only Device-A and Device-B in Panorama. Is it possible? Thanks

KiCheon.Lee · ‎07-24-2013

Hello, I know there are not log type of url & data filtering on syslog server profile. But my customer want to receive two logs to ESM system by syslog. Are there ways? Please let me know it if there are. And I have a question. Panorama is received this logs(url , data) from FW. Why is it able to receive? Thanks.

KiCheon.Lee · ‎06-20-2013

I had imported intermediate certificate for client certificate to FW. My customer sent only this certificate issuer by private Window CA. Do I need root certificate? Then Will I have to configure root certificate in portal config / Client configuration / Trust Root CA????

KiCheon.Lee · ‎06-20-2013

Hello VinceM, Thank you for your information. I have installed to choose client certificate in portal config / Client configuration / Trust Root CA. But result is same. I don't connect GP with same error message. I guess that FW does not read common name in certificate.

KiCheon.Lee · ‎06-20-2013

Hello gregory.screve1, Thank you for your help. I had seen this document your recommend. I have modified certificate profile in portal configuration. But I don't still connect GP with same error message. Please let me know other resolved way.

KiCheon.Lee · ‎06-19-2013

Hello I had tested to connect global protect with client cert successful in my lab.(PANOS-5.0.x) I am installing global protect on my custom device.(PANOS-5.0.x) But I don't connect with 'client cert invalid' message. I had installed the following in my lab at old days. 1. self generated certificate. 2. subject > common-name. profile name is 'test' 3. Portal configuration (authentication profile : local DB , client certificate : none , certificate profile : none) 4. Gateway configuration (authentication profile : none , certificate profile : 'test') 5. import certificate into my laptop. 6. connecting GP -> portal auth localdb(id/pw) successful -> gateway auth client cert(username : uquest) successful I am installing the following in my custom device. 1. FW is imported certificate issuer by window CA server. subject : /C=KR/ST=Seoul/O=paloalto/OU=paloalto/CN=pa.paloalto.co.kr issuer : /DC=local/DC=paloalto/CN=paloalto-CA 2. certificate profile : name 'test01' username field - subject - common name domain : pa.paloalto.co.kr 3. Portal configuration (authentication profile local DB , client certificate : none , certificate profile : none) 4. Gateway configuration (authentication profile : none , certificate profile : 'test01') 5. import certificate into my laptop. 6. connecting GP -> portal auth localdb(id/pw) successful -> gateway auth client cert(username : none) fail. Error message is client cert invalid. I don't know what missed configuration and problem. Please let me know resolved way. Thanks.

KiCheon.Lee · ‎06-19-2013

I had imported only intermediate certificate. I have seen this error message. Will I have to import root and intermediate certificates?? Do I need other something??

KiCheon.Lee · ‎05-30-2013

Hello all, I don't connect GP. GP client display error message. It is 'An error occured int the secure channel'. I use Window XP service pack 3. Only this desktop doesn't connect GP. Other desktop(window 7 , same account) connect. Please let me know resolved way. lo Thanks.

KiCheon.Lee · ‎05-29-2013

I have looked indexgen.log. I have found below logs in indexgen.log May 29 04:05:01 Error: pan_indexerv2_rowset_create(pan_logdb_indexer_v2.c:1275): Something wrong in index file /opt/pancfg/mgmt/logdb/appstatdb/1/20130528/pan.0000000000.log.name.idx with field name at index 2: 13833 - 10021 May 29 04:05:01 Error: _process_buffers(pan_logdb_indexer_v2.c:1604): rowset derivation from idxbuf failed May 29 04:05:01 Error: main(pan_logdb_indexer.c:519): pan_logdb_indexer_doindex() failed Are this logs normal?? Thanks

KiCheon.Lee · ‎05-29-2013

Thanks a million, zarina. I will look indexgen.log.

KiCheon.Lee · ‎05-29-2013

Hello My customer use M-100 appliance. M-100 CPU is not high. But searching traffic logs are very slow. M-100 OS is 5.0.2 How way do i check for logDB index? I thing that logDB index has some problem.

KiCheon.Lee · ‎05-28-2013

Hello I installed about virtual-wire link aggregation. (image1.png & image2.png) all members of 'ae1' are ethernet 1/3 , 1/5 , 1/7. all members of 'ae2' are ethernet 1/4 , 1/6 , 1/8. all members of 'ae2' was disconnected when I had removed ethernet 1/3. (image3.png) They was connected after 5 seconds.(image4.png) The device is enabled link state pass through. Are this situation and result right?? Thanks

KiCheon.Lee · ‎05-26-2013

Hello ncampagna, I have helpful assistance by your comment. Thanks a million. I have more question. What available number of same source port does FW have at different destination address??? Thanks.

KiCheon.Lee · ‎05-26-2013

Hello, I have questions about WF-500. Can there be alone WF-500 without FW? I read WF-500 Doc that WF-500 doesn't provide wildfire web portal for detail report. It sends result(malware or benign) to only FW wildfire log. How way does user check log without FW? Does WF-500 have connected UI interface? Thanks.

KiCheon.Lee · ‎05-12-2013

Hello emr, You assist my question, again. Thank you for always help me. I have a question, more. If I install all side (left and right) in service route configuration. Does the device process left side rather than right side?? or Does it process right side rather than left side??? Regards,

Member Since	‎04-29-2011 08:30 AM
Date Last Visited	‎07-20-2020 07:48 PM
Posts	195
Total Likes Received	15

Online Status	Offline
Date Last Visited	‎07-20-2020 07:48 PM

About KiCheon.Lee

Rest API about "export table" button for exporting rules"

I want to ignore to update ip-user-mapping information from other domain.

What purpose is 'parent app' when to create custom app?

HA1 interface was down during 1 second by restarting connection after heartbeat failure.

Re: About throughput performance with only url filtering

About throughput performance with only url filtering

Re: About FSCK on Panorama

Re: About FSCK on Panorama

About FSCK on Panorama

Re: What OS on windows server can PA support about global protect?

About HA1 connection down in system critical log.

Re: Can I make custom application signature for using referer of http header?

Re: What does 'devsrvr' daemon operate?

Re: Custom Button on URL Continue Response Page

How many can I create url-filtering profile on 5050?

Re: What OS on windows server can PA support about global protect?

Re: Can I make custom application signature for using referer of http header?

Re: What OS on windows server can PA support about global protect?

Re: About address and EBL limitation for maximum

Re: What does 'devsrvr' daemon operate?

Can I look ACC of some devices in Panorama?

Are there way that fw forward url & data filtering logs to ESM system by syslog??

Re: client cert invalid message when connecting global protect with client cert

Re: client cert invalid message when connecting global protect with client cert

Re: client cert invalid message when connecting global protect with client cert

client cert invalid message when connecting global protect with client cert

Re: Certificates troubleshooting

Global Protect Client Error Message

Re: searching traffic logs are very slow on M-100

Re: searching traffic logs are very slow on M-100

searching traffic logs are very slow on M-100

Virtual-Wire Link Aggreagaion

Re: to NAT pool or not

Can there be alone WF-500(Wildfire appliance) without FW?

Re: What does it change in 'service route configuration' that Use kerberos for Global Protect??

Unlock your full community experience!

About KiCheon.Lee