Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Live
- ›
- About dfeddersen
About dfeddersen
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
05-18-2017
01:23 PM
ok, thank you. I couldn't find anythign definitive on if we could stay in legacy mode for a while and still have everything work with logging and reporting. Reading through some other posts, someone said "Because PAN-OS 8.0 uses a new format, the logs will need to be converted to the new format to work properly and run reports.", and thats when I got concerned. https://live.paloaltonetworks.com/t5/General-Topics/Upgrading-7-1-to-8-0-New-Log-Storage/m-p/154369#U154369
... View more
05-18-2017
10:27 AM
We currently have a Panorama virtual machine with 2TB of storage runnint 7.1.x. I know there are changes to the log database in 8.0.x. We also have some newer PA firewalls that only run 8.0.x, so we would like to upgrade Panorama. How long can we run in "legacy" mode with Panorama 8.0.x? I don't have 2+TB of additional storage at the moment to create a new disk to complete the log conversion. Are there any limitations on running Panorama 8.0.x in "legacy" mode? Can we run in that mode for a few weeks? Can we still view the logs and run any needed reports? Will logs still be stored in the legacy storage? Thank you in advance.
... View more
05-11-2017
06:20 AM
We have the same problem. A couple of our firewalls are connected, but we have some that are disconnected. We tried to reboot one of the disconnected firewalls, and it is still disconnected. We do have a case open with Palo Alto, but they haven't helped yet. Did you find a fix for this? I'm concerned about trying to reboot Panorma again and lose the firewalls that are stil connected.
... View more
05-06-2016
11:10 AM
In that case, do we need to manually edit the XML file to remove things such as interfaces that don't exist? Are there other areas that would need to be edited as well?
I don't anticipate an issues with the number of objects, zones, policies, etc.
... View more
05-06-2016
10:57 AM
Is it possible to restore a backup configuration from say a PA5000 series to a PA3000 series? I know there are obviously interface differences between the platforms, and I couldn't find any recent documentation explaining if this is possible.
Thank you.
... View more
02-25-2016
01:25 PM
The upgrade depends on if you are on 6.0.x or 6.1.x. If you are on 6.0.x, you will need to go to 6.1.x first, and then to 7.0.x, so it will be two upgrades.
We did the upgrade in December from 6.0.x to 7.0.x, and it probably took a couple of hours per pair. Didn't run into any major issues. I think there were some SSL decryption bugs in 7.0.3, but I believe those were resolved in 7.0.4 and newer. Its been stable for us so far.
Hard to say if you would have any issues in your environment. I would check the features you use against the release notes to see if there are any bugs that would impact you.
... View more
02-01-2016
05:18 AM
pankaj.kumar,
I will try what you suggested. Thank you for the idea.
reaper, while your suggestion will allow the appropriate categories, nothing will be logged in the URL filtering log. We have a HR requirement to log all web browsing history, even if it is allowed.
Thank You.
... View more
01-22-2016
01:45 PM
I am unsure of how to solve this issue with URL filtering. Lets say HR wants to block the job search category and the hacking category except for specific users. I have an Active Directory group to allow Job Search for people who are allowed to access those sites, and another AD group for IT people who are allowed to access the Hacking group.
My problem is the people who fall into both groups - they are allowed Hacking and Job Search because they are in both AD groups.
If I use a URL Filtering Security Profile, the the "Allow Job Search" rule (which has Hacking blockecd) hits first, and the user is blocked, even though they are also allowed to access Hacking sites, which the rule below that allows.
If I use the "Service/URL Category" option in the firewall rule instead, it works, but then it does not log the information in the URL Filtering log. HR wants to be able to have logs for all sites allowed or blocked, so we have "alert" set.
Is there any way to handle providing access to people who happen to be in multiple groups, and also be able to log their browsing history?
Thank you.
... View more
08-03-2015
01:14 PM
What are the disk space requirements to use this for App-ID adoption? We have an existing Panorama VM that we send all logs to. Thank you.
... View more
11-19-2017
10Posts
1Like
0Solutions
Nov 19, 2017Last Visited
User
Activity
User
Profile
Latest posts by dfeddersen
| Subject | Views | Posted |
|---|---|---|
| 748 | 05-18-2017 01:23 PM | |
| 761 | 05-18-2017 10:27 AM | |
| 963 | 05-11-2017 06:20 AM | |
| 855 | 05-06-2016 11:10 AM | |
| 861 | 05-06-2016 10:57 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 | 12-07-2015 10:16 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 3 | |||
| 2 |
My Knowledge Base Contributions
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 0 |
User Badges
Public Statistics
| Date Registered | 10-31-2014 11:56 AM |
| Date Last Visited | 11-19-2017 09:00 PM |
| Total Messages Posted | 10 |
| Total Likes Received | 1 |
Latest Blogs
Latest Posts
Copyright 2007 - 2020 - Palo Alto Networks
