This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About popeja
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About popeja
05-25-2023
13Posts
1Like
1Solution
May 25, 2023Last Visited
User
Activity
User
Profile
Latest posts by popeja
| Subject | Views | Posted |
|---|---|---|
| 1349 | 06-21-2022 12:45 PM | |
| 1156 | 05-06-2022 09:08 AM | |
| 1161 | 05-06-2022 09:06 AM | |
| 1196 | 05-06-2022 08:29 AM | |
| 1548 | 04-14-2022 05:18 AM | |
| 1793 | 12-22-2021 08:08 AM | |
| 1818 | 12-22-2021 05:21 AM | |
| 1944 | 12-21-2021 05:24 AM | |
| 3953 | 01-28-2021 09:10 AM | |
| 3971 | 01-28-2021 05:39 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 04-14-2022 05:18 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 2 Likes | |||
| 4 Likes |
User Badges
Community Statistics
| Member Since | 08-27-2019 07:25 AM |
| Date Last Visited | 05-25-2023 05:23 PM |
| Posts | 13 |
| Total Likes Received | 1 |
06-21-2022
12:45 PM
I know this isn't a Palo question but can you ellaborate on having the clients update the DNS record automatically? We are currently having issues with our DNS server not having updated A record/PTR records.
... View more
05-06-2022
09:08 AM
To add more info: Outside interface is receiving DHCP from a CradlePoint on a Verizon cellular connection ESXi version is 6.7 PAN OS version is 10.1.4
... View more
05-06-2022
09:06 AM
Thanks for that article. I did forget to mention that I tried enabled replay protection on both ends and also disabling replay protection on both ends with no success and still getting the flow_tunnel_decap_err. I have a case open with TAC on this and will probably wait for them to decrypt the IKE & ESP traffic.
... View more
05-06-2022
08:29 AM
We've done plenty of s2s IPSEC VPN tunnels between our DC firewalls and branch offices. I have a new branch office which we are configuring the same way as the others, yet the IPSEC VPN is not operating as expected. The tunnel is showing as up and the IKE Phase 1 & 2 are successful. However, on both firewalls, when I go into Tunnel Info all I'm showing is packets & bytes being encapsulated with the number incrementing but the decap column stays at 0. Has anyone experienced this issue and what have you done to resolve? I've confirmed my configuration looks good, I've rebooted the ESXi host, and rebooted the firewall.
... View more
04-14-2022
05:18 AM
1 Kudo
I'm not running into this same question. Found the same tidbit as Mprintz but I feel like it's not explained well. Or maybe I can't comprehend it well enough. From my experience Global Protect has always displayed the "status panel" when entering credentials. Maybe I don't understand what the "status panel" is?
... View more
12-22-2021
08:08 AM
I was able to get around this issue by adding that serial number back as a managed device. Next I re-added it to the device group. Then removing this serial number from the dynamic updates schedule like Pavel said and I was also able to see this in the QoS policies again to remove there. My commit finally completed successfully.
... View more
12-22-2021
05:21 AM
Thanks the for the reply PavelK. I should have mentioned that I've remove the firewall from all these already. No luck.
... View more
12-21-2021
05:24 AM
I removed a firewall that is managed through Panorama by going to Panorama > Managed Devices > Summary, selecting my firewall then selecting delete. This removed the firewall for me succesfully. However, when I go to make a Commit in Panorama it throws an error saying
When I search for that serial number in Panorama it sure enough comes up on a couple of my QoS policies as a target device. I can even see the serial number listed as a target device on the summary of the policy. However, when I open the Policy and go to the Targets tab, it's not listed anywhere to remove it.
Has anyone ran into this problem before and have a solution or any ideas I can try? Thanks!
... View more
01-28-2021
09:10 AM
Per Palo Alto TAC this should be resolved in 10.0.5 once it's release. No clue on the release date yet of 10.0.5. I ended up using the work around of making my template w/ the wmi authentication settings top priority. Not a great solution but until 10.0.5 that's what I will be using. Could downgrade but I'll be patient for now.
... View more
01-28-2021
05:39 AM
We recently upgraded Panorama to 10.0.3 and are seeing the same issues as OP. Still haven't found our workaround but plan on trying what others have posted here as well. Will update when I have more info.
... View more
01-07-2021
12:56 PM
In my companies environment we have about 12 Gateways. Most of our machines have GP 5.0.8-4 installed. With no preferred gateway selected, I've seen a few cases where the GP client shows the gateway it's connected to instead of Best Available. From what I've seen the norm seems to show Best Available and you have to go into the GP client settings to see what Gateway your connected to. Anyone know why it's showing the Gateway instead of Best Available or has anyone else seen this in their environment? Thanks, -James
... View more
12-18-2019
08:51 AM
Currently, I'm not a huge fan of the roles that are available in the Palo Alto Hub. For our Service Desk team I'd like to allow them to use the uninstall and live terminal services feature on endpoints. However, giving them the roles that allow them to do this also grant access to create endpoint groups, create agent installation packages, etc.... these are things I'd like to be locked down. Am I missing a group that allows for this or is this in the works? Anyone else want something similar? Happy Holidays!
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
05-25-2023
05:23 PM
|
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks