cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About cindyb

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cindyb
‎08-08-2019
since ‎11-10-2011
Not applicable
User Activity
User Profile
User Badges
Community Statistics
Member Since ‎11-10-2011 12:00 PM
Date Last Visited ‎08-08-2019 08:51 AM
Posts 6
Total Likes Received 3

Does PAN support SAML redirect for SSL VPN Auth? Or possibly x.509 redirect?

by in General Topics
‎03-25-2013 05:17 AM
‎03-25-2013 05:17 AM
I'm looking to use a 3rd party product for SSL VPN authentication such as the Secure Auth for 2 factor.  Has anyone gotten this to work with the Palo Alto device?  It works with an ASA and a Juniper SA. ... View more

Who has deployed dynamic address objects?

by in General Topics
‎02-28-2013 05:52 AM
‎02-28-2013 05:52 AM
What have you found to be the work effort involved and how did it work out?  Is this likely to be used often or just in some specific cases? ... View more
Labels:

Re: Agentless User-ID with PAN5.x - AD Configuration

by in General Topics
‎02-28-2013 04:58 AM
‎02-28-2013 04:58 AM
No one from Palo Alto yet.  I will work on rounding someone up.  What I have been told is. . . USER-ID Update It is no longer necessary to use windows machine for one AD server It is best practice to setup filters to only enumerate groups that will be used in a policy - groups are ONLY used to create policy. The (windows) agent can still be used to check in with multiple AD servers.  As you probably know, it looks for kerberos tickets and also polls via Netbios or WMI to see if anyone has moved. Also, it is suggested to use agent if you don't want to use the control plane of the firewall for additional processing. Hope that helps a little for now. . . ... View more

Agentless User-ID with PAN5.x - AD Configuration

by in General Topics
‎02-26-2013 09:41 AM
‎02-26-2013 09:41 AM
I have read the tech article " How to Configure Agentless User-ID in PAN- OS 5.0.x" I'd love to see this document broken into two docs - one that I can send out to customers to prepare for POC - the AD user account setup portion without the PAN firewall config portion . . . does this already exist somewhere? ... View more
Labels:

PAN-OS Upgrade with HA

by in General Topics
‎02-25-2013 08:52 AM
1 Kudo
‎02-25-2013 08:52 AM
1 Kudo
Has anyone found a really good tech note that goes over performing a PAN-OS upgrade on an HA pair?  Both Active-Passive and Active-Active? ... View more
Labels:

PA200 with DSL (Dynamic DHCP Client) causing slow web browsing and "incomplete" application in traffic monitor

by in General Topics
‎02-08-2013 05:10 AM
2 Kudos
‎02-08-2013 05:10 AM
2 Kudos
Ever since I put my PA200 inline at my house, my internet has been running really slow. In troubleshooting, I learned about the "More Runtime Stats" link in the virtual router.  I needed this info to determine what traffic should be considered "interesting" and routed through the SSL VPN to create split tunneling for remote access. Because s lot of my traffic was showing as "incomplete" in the traffic monitor, I knew my slow browsing was a routing problem.  Anytime the application shows "incomplete" there is a missing 3-way handshake.  The "More Runtime Stats" revealed that I had two default gateways (0.0.0.0/0 was entered twice.) I had added a static route pointing 0.0.0.0/0 to my (outside) ethernet1/1 interface.  Apparently the firewall also adds a default route when I selected "dynamic DHCP client" for my outside interface. Removing the static default gateway (I had added) from my config fixed my problems. ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎08-08-2019 08:51 AM
Latest Tags
No tags yet
Likes Given To
View All
Likes From
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2022 - Palo Alto Networks