This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About apasupulati
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About apasupulati
01-10-2023
87Posts
45Likes
28Solutions
Jan 10, 2023Last Visited
User
Activity
User
Profile
Latest posts by apasupulati
| Subject | Views | Posted |
|---|---|---|
| 4289 | 01-02-2014 08:09 AM | |
| 3025 | 12-31-2013 07:48 AM | |
| 3026 | 12-31-2013 07:45 AM | |
| 2756 | 11-12-2013 08:36 AM | |
| 3095 | 11-07-2013 06:03 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 06-11-2013 09:32 AM | |
| 1 Like | 04-10-2013 09:11 AM | |
| 1 Like | 10-06-2013 11:40 PM | |
| 1 Like | 12-08-2012 06:41 PM | |
| 2 Likes | 09-04-2013 04:06 PM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 16 Likes |
Retired Member
| ||
| 2 Likes | |||
| 2 Likes | |||
| 1 Like | |||
| 2 Likes |
User Badges
Community Statistics
| Member Since | 10-18-2011 01:44 PM |
| Date Last Visited | 01-10-2023 11:29 AM |
| Posts | 87 |
| Total Likes Received | 43 |
10-23-2013
07:32 AM
1 Kudo
If all the ip-mappings are discovered on the agent and not the firewall - 1. Are these users from a different subnet coming from a different source zone? all the source zones will need to have User-Id enabled so users can be identified on the firewall. 2. If coming from the same zone as the identified subnet, I'd re-check if the zone has any User-id ACL (include/exclude list) configured.
... View more
10-22-2013
02:06 PM
Hello, The PAN firewall should allow the reverse telnet traffic to traverse the firewall, but we don't support reverse telnet to be enabled on the firewall. Thanks, Aditi
... View more
10-22-2013
01:37 PM
1 Kudo
Hello, The destination NAT is like static NAT, i.e. One to One translation. It looks like you're trying to do many to many, which is not possible by destination nat. Thanks, Aditi
... View more
10-22-2013
01:34 PM
Hello Adam, Since you mentioned this was working on PANOS 5.0.7, was the device upgraded or is that on a different firewall? Can you clarify if you're using the agent or the agentless? Do you have any include or exclude lists configured? Under the zone configuration or the user-id config. Pick a user machine whose mapping is not learnt and verify the logon server. Run "set l" at the windows cmd prompt to see which logon server the user logged onto. Confirm the user-id service is connected to the logon server/DC. If everything is setup correctly, we'd have to look at the logs. If using agentless, you can enable debugs for user-id service and tail the useridd.log. Or you can enable debug level logging on the user-id agent and check the Uadebug logs in the agent's directory. You can also refer: https://live.paloaltonetworks.com/docs/DOC-5662 Regards, Aditi
... View more
10-22-2013
07:41 AM
1 Kudo
Hello, With IPsec mode enabled for GP, the client will make an ipsec connection first and use SSL connection as a fall back. Aditi
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-10-2023
11:29 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks