Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
- AIOps for NGFW
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- Cloud NGFW for AWS
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
About MohammadRamadanA.Hafiez
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- About MohammadRamadanA.Hafiez
Online
44Posts
1Like
3Solutions
May 26, 2022Last Visited
User
Activity
User
Profile
Latest posts by MohammadRamadanA.Hafiez
| Subject | Views | Posted |
|---|---|---|
| 58 | 05-24-2022 03:15 PM | |
| 142 | 05-23-2022 03:33 AM | |
| 145 | 05-14-2022 10:45 AM | |
| 177 | 05-14-2022 09:36 AM | |
| 229 | 04-28-2022 12:16 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 10-12-2021 11:16 PM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 1 Like | |||
| 1 Like | |||
| 1 Like | |||
| 1 Like |
User Badges
Community Statistics
| Member Since | 10-19-2020 11:51 PM |
| Date Last Visited | 05-26-2022 12:46 AM |
| Posts | 44 |
| Total Likes Received | 1 |
05-24-2022
03:15 PM
From palo alto support tocket created they replied with clientless not supporting hip collection. Agent must be installed to collect hip info.
... View more
05-23-2022
03:33 AM
Hello Bros' I have a question regarding the clientless vpn in palo alto, does it supports hist information profile collection for controlling the machines allowed to connect just as it is in GlopalProtect?
... View more
05-14-2022
10:45 AM
Hello, I kept on testing the issue, and I could reach to the reagistery path "Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography" whicher which i could find the MachinGuid, and edit it to avoid any repetion "which is originally my issue is the repeteion and after restart global now sending the new ID" Any one has any comment on this? I hope any one tell me how this Machine GUID is formed, and what about my manual edit in the registery key?
... View more
05-14-2022
09:36 AM
Hello Bro, I have many security rules that based on the hip profiles. recently, I found that I have few people that their windows host id has changed. but what's so wiered is that some of them has same machine id!!!! which cause accessing resources issues.even when i check the registery, i found they are same. have any of you met with something like that ? is ther any way to stop this machine id from being changed due to any changeble parameter? how come to have about "so far" 3 machiness with the same machine id submitted by the GP agent"? TIA
... View more
04-28-2022
12:16 AM
Hello Suresh, Thanx alot for your reply, very useful. just wanted to confirm that, using the clientless VPN will make us miss the HIP collection too, right ?
... View more
04-27-2022
03:12 AM
Hello Bros, Currently, we are using GlobalProtect VPN, which is working great. and now we are discussing of using the Clientless VPN supported by the PanOS version 10 and later. Do you recommend using the Clientless VPN over Globalrotect VPN? what is your recommendations regarding using the clientless VPN if you recommed using it over the GlobapProtect VPN? TIA.
... View more
01-13-2022
02:50 AM
Hello Nikolay, Thank you for your replay. The authentication sequence doesn't include the local DB, but I have noticed it's happening very few occurrence with people who were days "a week or more" have not been connected at all to the gateway.
... View more
12-22-2021
03:50 AM
Hello Bros' few months ago I had an issue with the GlobalProtect and employees working from home and that was. all employees log-in to vpn globalprotect via their domain account mydomain\myusername. we had issues regarding the sso in the portal configuration were enabled which lead the employees trying to connect to use sso "windows account" wich led to login using myusername only, and this won't get them connected. for this we have disabled the windows single sign on, and everything went fine since so. But now from time to another I met with employee which I am troubleshooting his issue that it still trying to connect to myusername only, and eventhough we have disabled sso, and worked fine. what is the config part that still but fewer occurence that make employees globalprotect to failover on windows account but not the account configured within the GP login fqdn.? setting changed: Use Single Sign-on (Windows) No Use Single Sign-on for Smart card PIN (Windows) No Clear Single Sign-On Credentials on Logout (Windows Only) Yes TIA
... View more
- Tags:
- globalprotect
11-20-2021
11:06 PM
@BPry From that I conclude that this is by design and no security c oncerns. "Kindly, confirm" Thank you so much.
... View more
11-20-2021
07:48 AM
Hello Bros' I have a strange issue "As I think it is issue". Our configured Portal for downloading the GlobalProtect gateway for our VPN connected employees supposed to authenticate firstly so that if from any where use internet brower https://x.y.z.k "portal address" we acccept the certificate, then authenticate normally "name/password". But: if we copy the browser URL "after authentication process" and past it later on any other browser on any other PC, the URL directly and without any authentication open to the GlobalProtect downnload page. I belive this is not normal behaviour even if this page for only downloading the available from any where else agent software. Id this acceptable? how to correct this if it's an issue? TIA.
... View more
- Tags:
- globalprotect
11-08-2021
05:04 AM
I have seen this link, and my question arrised when I saw it that If I don't have set source and destination interfaces or not. because in my case the one of two ends are tunnel inteface ethernet 1/x "which the tunnel created in" and the other is subinterface.
... View more
11-08-2021
03:33 AM
Hello Bro, We are in process to configure QOS rules to control SMB over VPN. The tunnel interface can't be set as a destination interface, does that mean to use the interface that serving the tunnel? if I use the interface as the destination interface I receive error states that "destinaton interface must be a subif". SSL VPN configured on the interface tunnel.1 Any ideas on ow to configure this or links to help TIA
... View more
- Tags:
- qos
- tunnel interface
11-06-2021
01:49 PM
Hello Bro, After using the packet capture, I have discovered that the commanf ping -a x.x.x.x uses the LLMNR "Linl-Layer Multicast name resolution", Kindly anyone correct me or tell me how to allow this kind of multicast app " abit risky app, but i need to POC it"
... View more
11-04-2021
08:10 AM
Hi, I hope any one tell me how this ping -a works. is it working by querring the name "from the DNS" so I need to have access to the DNS which is already provided. is it using the netbios name? how to enable this app in the security rules? "by the way, just now I found the ping -a is working to other zone"
... View more
11-02-2021
11:54 PM
@aortiz name resolution working via dns no problem after and before zones separation, this is for dns. But after changing to the new zone ping -a x.x.x.x Not working "was working before Changing zone".
... View more
Contact Me
| Online Status |
Online
|
| Date Last Visited |
05-26-2022
12:46 AM
|
LEGAL NOTICES
Copyright 2007 - 2022 - Palo Alto Networks
