This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About robert_smith
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About robert_smith
08-18-2015
15Posts
2Likes
0Solutions
Aug 18, 2015Last Visited
User
Activity
User
Profile
Latest posts by robert_smith
| Subject | Views | Posted |
|---|---|---|
| 1694 | 11-21-2012 08:22 AM | |
| 1861 | 11-13-2012 07:49 AM | |
| 2372 | 10-04-2012 06:40 AM | |
| 2372 | 05-16-2012 11:09 AM | |
| 2614 | 05-15-2012 06:50 AM | |
| 5255 | 04-12-2012 10:04 AM | |
| 5601 | 04-11-2012 07:02 PM | |
| 5601 | 04-10-2012 11:22 AM | |
| 5891 | 04-09-2012 08:10 PM | |
| 4178 | 04-02-2012 12:32 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 04-02-2012 09:39 AM | |
| 1 Like | 05-16-2012 11:09 AM |
User Badges
Community Statistics
| Member Since | 02-24-2012 07:18 AM |
| Date Last Visited | 08-18-2015 09:07 AM |
| Posts | 15 |
| Total Likes Received | 2 |
11-21-2012
08:22 AM
Do we have any support or articles on this subject or to make this work properly over ipsec and vpn? I know there are articles for Android and Apple but have not seen any information on Microsoft Surface RT platform support on this website.
... View more
Labels:
- Labels:
-
Networking
-
Set Up
11-13-2012
07:49 AM
Much like an access list on a cisco router top to bottom. I recently created 2 rules for our 3rd party ISP to connect internet sticks via our firewall. 1st rule - Allow all traffic via TELUS internet sticks from Trust Vpn, Source (telus), Destination (Any), Actions (Allow), No profile type. 2nd rule - Deny all traffic via TELUS internet sticks from Trust Vpn, Source (telus), Destination (Any), Actions (Deny) Profiles Type "Profile", URL Filtering (VPN use only) which has allowed sites and blocked sites that I created. However, when I commit the rules, I get an message "Security Policy: Rule Telus Internet Allowed urls" shadows rule "Telus Internet disallowed urls". I'm not certain which to change. Any ideas? Rob
... View more
Labels:
- Labels:
-
Configuration
-
Management
10-04-2012
06:40 AM
How would one go about doing this properly? We do not want to affect any users currently using global protect.
... View more
05-16-2012
11:09 AM
1 Kudo
Interesting. Yes we do have a global protect license and it is currently activated. Could it have been prompted this error message after a committ when it was removed and readded?
... View more
05-15-2012
06:50 AM
Hello I need some help with this. The other day we committed changes to our firewall due to switching back to our original server certificate that we were using temporary a TestGP certificate which was created by PA support team to test our global protect issue. Once the changes were committed, we get the error "no globalprotect portal license: SSL VPN config "Client VPN internal gateway will not take effect". Since our globalprotect client is still working on our firewall and users are still able to connect, how do we get rid of the above error? We are using version 4.1.6 which we had to install from version 4.1.2 due to issues with a buffer leak (PAN-OS Software Buffer Leak, Issue ID 36829) Any insight into this? Robert
... View more
04-11-2012
07:02 PM
Thanks for answering but what is a cleanup and how do I do this particular rule you mentioned? Can you provide steps?
... View more
04-10-2012
11:22 AM
Thank you for answering my question.... I've added both objects-- services and polcies--security rule to the FW, however after committing the changes and testing, it still doesn't seem to allow download of the video content. It just states "connecting" but no go. I've included a snapshot of the event of what occurs when using Aspera webclient and the rules added. Perhaps I've missed something?
... View more
04-09-2012
08:10 PM
Hello All, I have encountered an issue where a downloaded client installed on Internet Explorer called Aspera client for downloading video content experienced an error.It states to check the UDP port and firewall based on code 15. Since this is application based (HTTP), where is the most effective place to allow and create the rule for the client to download? Do I create a "security" rule or create a "application overide"? I want to be able to allow a source zone or ip (trusted) to allow traffic connections to an ip (untrusted zone) on port udp 33001. Any insights? BTW, this site is http://asperasoft.com/en/support/troubleshooting_3/2_Connect_Timeout_4 is where the support is based. I didn't see the application listed either in the PA firewall applications listing either. RS
... View more
04-02-2012
12:32 PM
Jason, I ran the command you mentioned and it shows some the following result. I've omitted users domain/user name for privacy concerns. The vpn 192.168.7.x are vpn globalprotect clients and they do show in the listing. So it seems it only is showing vpn clients at the moment. Does the user-id client agent need to be installed directly on the domain controller as we have it installed on our manage server which is a member server which runs on VMware. We are running PAN OS Software 4.1.2 The user-id client is running version 4.1.2-2 PA-500> show user ip-user-mapping all IP Ident. By User Idle Timeout (s) Max. Timeout (s) --------------- --------- -------------------------------- ---------------- ---------------- 192.168.7.xxx GP (ommitted domain/user) 2468098 2468098 192.168.x.xx Unknown unknown 1 4 192.168.x.x Unknown unknown 1 4 192.168.x.x Unknown unknown 2 5 192.168.7.xxx GP (ommitted domain/user) 2155146 2155146 192.168.x.x Unknown unknown 2 5 192.168.x.x Unknown unknown 0 3 192.168.x.xx Unknown unknown 2 5 192.168.x.xxx Unknown unknown 2 5 Total: 9 users
... View more
04-02-2012
09:39 AM
1 Kudo
Although the "agentID client" is installed on one of our domain controller boxes, I find that when using MONITOR log to look at the traffic, it doesn't show the "source user" of whom is currently logged in via Active Directory. Any idea why? In addition, the monitor log will show the ip address and it will "resolve hostname" when checking the box. Any help would be appreciated. Rob
... View more
03-23-2012
01:50 PM
After installing the GlobalProtect client software on a Windows 7 Home laptop, even when the client is not being used, every so often a message will pop up with "on demand" will connect on its own and it will not time-out. The only way to stop it is to kill the process in the task manager. The disconnect is greyed out and it will not allow me to stop this. We are currently using version 1.1.3. Perhaps this is a bug?
... View more
03-23-2012
01:37 PM
Ok. Just to verify, will the other dynamic updates mentioned in the first post require an reboot of the firewall?
... View more
03-23-2012
01:30 PM
Is this the same for the vpn client software as well?
... View more
03-23-2012
12:56 PM
We have some dynamic updates that were downloaded but not yet installed. Can these updates be installed/pushed out during normal office operations or will there be some downtime?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
08-18-2015
09:07 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks