This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About arnaud_b
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About arnaud_b
08-18-2015
13Posts
2Likes
0Solutions
Aug 18, 2015Last Visited
User
Activity
User
Profile
Latest posts by arnaud_b
| Subject | Views | Posted |
|---|---|---|
| 1771 | 06-29-2012 07:13 AM | |
| 2161 | 06-25-2012 01:51 PM | |
| 1153 | 12-13-2011 08:07 AM | |
| 1664 | 12-13-2011 07:52 AM | |
| 2095 | 06-28-2011 10:40 AM | |
| 2095 | 06-17-2011 09:22 AM | |
| 2349 | 06-17-2011 04:15 AM | |
| 3322 | 10-05-2010 02:08 AM | |
| 2260 | 10-05-2010 02:05 AM | |
| 3321 | 09-23-2010 06:40 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 09-23-2010 06:40 AM | |
| 1 Like | 12-13-2011 08:07 AM |
User Badges
Community Statistics
| Member Since | 01-08-2010 04:25 PM |
| Date Last Visited | 08-18-2015 09:06 AM |
| Posts | 13 |
| Total Likes Received | 2 |
06-29-2012
07:13 AM
Hello, Anyone test it ? Regards, Arnaud
... View more
06-25-2012
01:51 PM
Hello, I want to know if it's possible to use two factor for a succeed authentication with GlobalProtect Client. I explain it. In the configuration of GlobalProtect Client, you can define two method for the authentication of the clients (portals and gateways are the same configuration): - Authentication Profile: you can define LDAP, Radius, local database - Client Certificate profile: you put a specific certificate Root CA for the validation of the clients certificates Is it possible to combine the two methods to validate the users for the authentication via Global Protect client ? With an another product like Juniper SecureAccess. In the documentation, it's specified if you use the method "Client certificate profile" : In this SSL‐VPN configuration, we’re not using another form of authentication. We’re simply utilizing the client certificate to authenticate ssl‐vpn connections. Thanks for your help the PaloAlto community Regards, Arnaud
... View more
Labels:
- Labels:
-
Configuration
-
Set Up
12-13-2011
08:07 AM
1 Kudo
Hi Justin, PaloAlto implemented the function 'Tag' on the security rule and you can search your specific rules with it. You can imagine to create rules for the web surfing and you tag your rules 'Web'. It's more easy to find your rules like this. I know it's not like Checkpoint with a banner for a group of rules. Regards, Arnaud
... View more
12-13-2011
07:52 AM
Hi, The best way is to specifiy a rule for the 2 DC with any restrictions applications. After one or two days, you create a specific report for this rule and you can see the application used between the 2 DC. What are the services between the 2 DC? (replication, dns, exchange, AD) Regards, Arnaud
... View more
06-28-2011
10:40 AM
Hi Phil, I realized some tests in mode L2 / L3 or L2+L3 with the function 'preempt' active. My conclusion is the mode preempt is not possible in Mode L2 with the link monitoring. My goal was to combine a device with interface L3 and L2 in the mode preempt. When you test it, you can observe a flip flap of the devices and degradation of service (during a time that you configured with the option Maximum No. of Flaps and the hold time). When you shut down an interface, the defect device becomes master with an interface down during 1 mn. Also you have an interruption of service. Do you test it in this mode ? Thanks, Arnaud
... View more
06-17-2011
09:22 AM
Hi, Thanks for he reply. I tested in L3 and no problem. But I must to stay in L2 or Vwire and also the preempt is not possible with this mode when you use link monitoring. I don't find the information in documentations or KB. Anybody have an idea or precision ? Thanks, Arnaud
... View more
06-17-2011
04:15 AM
Hello, I contact the KB because I need to have some explanations or best practice for a specific configuration.My issue is I observed in a specific configuration (interface in mode L2 or Vwire with the function preempt active and link monitoring) a strange behavior of the HA.When you shut down an interface from the active member, you have some flaps (defect device becomes master and the production is degraded on this device: the interface is always down). Did you observe it? Also I think the function preempt is not possible with interfaces in mode L2 or Vwire.Can you confirm it with your experience? Furthermore what is the best practice when you want to integrate a device with some interfaces in mode L3 and some interfaces in mode L2 or Vwire? I already opened a case at the support but I will get advantage of the KB. Thanks for your help. Regards, Arnaud
... View more
10-05-2010
02:05 AM
Hello, I would to know how you fix this issue, I think I have a similar issue. Thanks for your help. Regards, Arnaud
... View more
09-23-2010
06:40 AM
1 Kudo
It's strange, it's looks like an issue with a previous integration. The problem was an equipment analyzed the traffic and did some actions. Verify if you have a IPS / IDS or an another equipment analyzing the traffic http or https.
... View more
09-23-2010
06:28 AM
Could you paste the result of cli command # show system info It's just to check your version of PAN OS and apps version. Regards, Arnaud
... View more
09-23-2010
06:17 AM
Ok. Did you realize the following cli command: # request url-filtering upgrade brightcloud you can check the status with this cli command: # request url-filtering download status or in the logs # tail mp-log pan_bc_download.log Do you have an error message after it? You must to wait the download of the entire database. after it, you will activate the url filtering in the webui on the menu 'licences" Regards, Arnaud
... View more
09-23-2010
05:26 AM
Hello Feras, Did you activate the proxy connection for the management? If it's true, do not activate the control A/V for the URL updates.paloaltonetworks.com on the proxy. Exclude this URL for the proxy What are the steps you realized for the activation of Brighcloud? Regards, Arnaud
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks