This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About rockfort
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About rockfort
02-24-2023
10Posts
0Likes
0Solutions
Feb 24, 2023Last Visited
User
Activity
User
Profile
Latest posts by rockfort
| Subject | Views | Posted |
|---|---|---|
| 1075 | 08-22-2020 09:20 AM | |
| 1801 | 07-15-2020 10:17 AM | |
| 6461 | 05-29-2020 06:35 PM | |
| 7807 | 05-17-2020 01:49 PM | |
| 7948 | 05-17-2020 10:08 AM | |
| 13500 | 05-17-2020 09:59 AM | |
| 13955 | 05-16-2020 06:45 PM |
User Badges
Community Statistics
| Member Since | 01-09-2015 11:19 PM |
| Date Last Visited | 02-24-2023 11:31 PM |
| Posts | 10 |
08-22-2020
09:20 AM
RADIUS with CHAP protocol for authentication will not work even though LDAP does from the same two Microsoft 2012 servers. I have utilized the CLI "test authentication" to confirm the findings, here are facts; Palo Alto running 8.1.13 Microsoft 2012 Server RADIUS Standard selected (updates are current) RADIUS with CHAP does not work LDAP works flawlessly (Type of authentication: plaintext dangerous) If there is anyone who knows how to configure a Palo Authentication with RADIUS using CHAP on a Microsoft 2012 Server, please enlighten me. Thanks in advance Rockfort
... View more
07-15-2020
10:17 AM
I need your help on this please. Is it possible to have a wildcard FQDN as a source or destination address (example *.microsoft.com) Is is possible to mix wildcard FQDN with a non wildcard FQDN in an address group (example add in *.microsoft.com with google.com in the same address group) Thanks in advance.
... View more
05-17-2020
01:49 PM
Edwin thank you for your reply. I am looking for any "CLI" commands that are common to trouble shooting issues with aggregate interfaces on Palo Alto Firewall. Do you have any that you share with me? Pick the scenarios(any). Thanks in advance.
... View more
05-17-2020
10:08 AM
My environment has Palo Alto Firewalls that has Aggregate Interface configuration and use. There are infrequent issues with them and I have some questions: What are the tools for trouble shooting Aggregate Interfaces within the GUI (web interface) What are the CLI commands for trouble shooting Aggregate interfaces Thanks in advance
... View more
05-16-2020
06:45 PM
I created a new FQDN address object to facilitate a new Policy(rule). When tested the FQDN resolves internal to the Palo Alto Firewall. The rule contains one destination address which is the new company.fqdn.com FQDN The rule contains one source address Application SSL with Application-Default Service Action Allow When attempts are made to connect to this destination via the new rule with the FQDN set(destination), the traffic is denied(fails) and logs point to(identify) the "interzone-default" rule instead of the "new rule" that is set up to facilitate this connection But when I replace the FQDN(destination) with it's resolved IP in the new rule, it works fine(allowed) and logs point the occurrence to the "new rule" (not the interzone-default) as to be expected since that is normal behavior Questions: Why would the interzone-default rule become a part of the failed attempt to connect to the new rule Anyone know why connection fails with the FQDN set as destination rather than it's resolved IP address As anyone had a similar experience Thanks in advance.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
02-24-2023
11:31 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks