Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- 5G
- IoT Security
- Prisma SD-WAN
Network Security
- Prisma Access
- Prisma SaaS
- Prisma Cloud
- CN-Series
- VM-Series:
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
Security Operations
- Resources
- COVID-19 Response Center
- LIVEcommunity
- ›
- About cstancill
About cstancill
Announcements
Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
08-19-2020
42Posts
16Likes
10Solutions
Aug 19, 2020Last Visited
User
Activity
User
Profile
Latest posts by cstancill
| Subject | Views | Posted |
|---|---|---|
| 1904 | 07-18-2019 08:22 AM | |
| 2127 | 04-06-2017 08:55 AM | |
| 1751 | 04-17-2015 06:49 PM | |
| 611 | 03-18-2014 12:12 AM | |
| 1316 | 03-18-2014 12:04 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 | 02-25-2013 10:06 AM | |
| 1 | 05-20-2013 04:46 PM | |
| 1 | 04-04-2013 08:04 PM | |
| 1 | 04-17-2015 06:49 PM | |
| 1 | 12-16-2013 12:10 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 | |||
| 1 | |||
| 5 | |||
| 3 |
My Knowledge Base Contributions
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 0 |
User Badges
Public Statistics
| Date Registered | 02-14-2013 04:48 PM |
| Date Last Visited | 08-19-2020 03:10 PM |
| Total Messages Posted | 89 |
| Total Likes Received | 16 |
07-18-2019
08:22 AM
I believe expedition just takes a config snapshot (the Panorama xml config file rather than a tarball).
... View more
04-06-2017
08:55 AM
Panorama will not ingest tags from AWS directly. What you can do is create the AWS tags in Panorama manually. Then the firewall will apply the tag to IP mapping when it inforces policy based on those same tag values it learns from AWS.
... View more
04-17-2015
06:49 PM
1 Kudo
Jared is absolutely correct regarding using decryption to enable inspection. To address the performance concern: whether or not decryption has an appreciable effect on your performance depends entirely on *how much* you are decrypting. Each platform has specific upper limits in terms of the maximum number of concurrent decrypted sessions. The additional overhead caused by decryption will depend on this volume. You can limit the scope of decrypted traffic using different criteria (e.g. URL category). This approach will let you inspect things that need to be, like youtube, facebook, etc. while not wasting resources on sessions that probably don't need to be (e.g. online banking, healthcare, etc).
... View more
03-18-2014
12:12 AM
Is there an issue creating a second set of tunnels? Unless you will have the same public addressing at your DR site, using the same configuration won't help (as the other end of the tunnel won't be configured for the DR IP address). Additionally, having a second set of tunnels that are already up will reduce your recovery time.
... View more
03-18-2014
12:04 AM
Have you tried downloading the license from the support portal on a system that has internet access (e.g. a laptop) and uploading it to the firewall from there?
... View more
03-18-2014
12:02 AM
1 Kudo
Try and rebuild the userinfo.xml file using the following commands: > debug user-id clear group all > debug user-id reset group-mapping all > debug user-id reset user-id-manager type user-group > configure # commit force This will force the firewall to rebuild the userid.xml file based on a refresh from the LDAP server. If this doesn't work, give support a call so that we can take a look.
... View more
03-12-2014
05:34 AM
Sorry, I suffered a multi-tasking failure :smileylaugh:. That should have been " " if we have a start time of 08:15:00 and default settings, then we ignore all entries between 08:15:00 to 08:15:20"
... View more
03-11-2014
04:13 AM
Minow, Check what Hulk said, and double check your routes (including any PBF rules). It could be that the return packet is being routed to a different interface than the SYN packet came in on, which will give you the zonechange drop counter. Craig Stancill | Technical Support Engineer Shift Time : 05:00 – 14:00 GMT Support Contact: US: (866) 898-9087, Outside the US: +1-408-738-7799 Palo Alto Networks | 3300 Olcott Street | Santa Clara, CA 95054-3005, USA https://support.paloaltonetworks.com/
... View more
03-11-2014
12:44 AM
We use the concept of average page load time (default of 20 seconds) as the assumed time it takes to load all of the page elements. For example, when you go to a media intense site like cnn.com, you see a lot of URL log entries associated with the various page elements. For the purposes of calculating browse time, we ignore all log entries from the start time through the average page load time. This means that if we have a start time of 08:15:00 and default settings, then we ignore all entries between 9:10:00 to 09:10:20. This may be the reason for the empty entry. Do you have the URL logs for that user? You may be able to confirm it that way.
... View more
02-02-2014
11:01 PM
From the description, this sounds like it may be an issue with monitoring server session reads. Just so I understand the flow, is the following correct? User is logged into their workstation, and is correctly mapped to the IP of that workstation. User maps a drive to a share on a server using different credentials and the mapping is updated based on that information causing an issue with the rule set. In the above case, you can disable server session reads to resolve the issue. Please let me know if there is more to this.
... View more
01-11-2014
09:37 AM
They are not required for VWire as interfaces configured as such don't have IP addresses and don't participate in Layer 2/3. If you have an additional interface that is in L3 mode (to support Captive Portal redirect mode for example), then you can add a floating IP for that interface if desired. -Craig
... View more
12-28-2013
09:33 AM
Vesna, You aren't missing anything. Please open a case so that we can address this with the developers. Thank you for bringing this to our attention! Craig
... View more
12-27-2013
03:50 AM
1 Kudo
Cheon, Sorry for the delayed response. For denied logs, you are correct. Craig
... View more
12-22-2013
10:27 PM
Nyanko, Only the candidate configuration (when you choose to save the candidate) is saved to flash. Configuration versions and named configuration snapshots are saved to the hard drive Flash isn't used for long-term configuration storage.. Craig.
... View more
12-16-2013
12:10 AM
1 Kudo
Cheon, 1. That is correct, provided packet forwarding is enabled. 2. This is correct as well. 3. Unfortunately, the actual session ID will be different for each firewall. Craig
... View more
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
