This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About Sr_Sealion
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About Sr_Sealion
23Posts
0Likes
0Solutions
Last Visited
User
Activity
User
Profile
Latest posts by Sr_Sealion
| Subject | Views | Posted |
|---|---|---|
| 1070 | 12-05-2022 09:14 AM | |
| 3424 | 05-23-2013 09:18 AM | |
| 3147 | 03-12-2013 08:40 AM | |
| 3653 | 03-11-2013 04:16 PM | |
| 3873 | 03-11-2013 03:20 PM | |
| 3630 | 02-19-2013 09:33 AM | |
| 2958 | 04-02-2012 09:41 AM | |
| 1777 | 02-09-2012 09:14 AM | |
| 1977 | 09-01-2011 07:57 AM | |
| 3712 | 08-10-2011 10:01 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 2 Likes | |||
| 1 Like | |||
| 2 Likes |
User Badges
Community Statistics
| Member Since | 10-27-2010 10:04 AM |
| Date Last Visited | |
| Posts | 23 |
12-05-2022
09:14 AM
For what it is worth, this issue still exists with PAN-OS 10.1.6-h6. Has anyone opened a case with PAN support?
... View more
05-23-2013
09:18 AM
Those names don't mean anything to me. Can you associate your internal names with the function? 10G phys is somewhat self descriptive but what is a "Jaguar"? If I wanted to monitor ONE temperature out of the four for overall device status which one would I use?
... View more
03-12-2013
08:40 AM
I stand corrected on the behavior under 5.0+. Thanks. I feel a little better about the security of the devices now. That still doesn't address my original question though. All of the documentation I've been able to find on the Internet indicates that MSRPC/DCM is a completely separate protocol. Is there truly a dependency between the MSRPC/DCOM and NETBIOS protocols? Is SMB really necessary for MSRPC to work?
... View more
03-11-2013
04:16 PM
Actually, the dependencies are still there. All that has happened is PAN devices will now implicitly add the 'needed' applications to a rule where an explicit application has dependencies. This actually increases my worry that more access would be granted than intended.
... View more
03-11-2013
03:20 PM
Does anyone else feel that the application dependencies for MSRPC are incorrect? PA currently lists MSRPC as dependent on MS-DS-SMB and NETBIOS-SS. However, those protocols are not actually necessary for MSRPC to work. They are distinct protocols with different purposes. To my mind, including those dependencies encourages administrators to include unnecessary access in security policy. For example, if I'm writing a rule to allow access to an Exchange server I don't normally want to give users the ability to map drives - Yet, this is what the dependencies are telling me I should do. While I am quite comfortable with ignoring the warnings generated at commit time, I still feel it is a mistake to have these dependencies. I'm very interested in hearing other people's opinions.
... View more
- Tags:
- app-id
- dependencies
Labels:
- Labels:
-
App-ID
02-19-2013
09:33 AM
PAN-OS 5.0 has a new feature called "Dynamic Block Lists". We have not yet tested the functionality but it looks like the answer to your need.
... View more
04-02-2012
09:41 AM
I don't know about aigarkais but I would like to be able to get data from the agent so I can do user-id to IP lookups without having to log into a PAN device. A tool like that would be useful to a number of IT groups for supporting users. Currently, if support needs to do a remote login to a workstation, they need to ask the user what their IP address is. If the user is not very knowledgable about computers, this can be a frustrating task for both the user and the support person. Leveraging the user-id agent to lookup the mapping would make a lot of people happy.
... View more
02-09-2012
09:14 AM
How do I filter the Security Policy to show only those rules that have a specified profile, or no profile, assigned? We have a large, ~560 rule rulebase. I need to be able to easily find rules that have a specific profiles assigned. Scrolling through the entire rulebase rule-by-rule is more than time consuming - it easily leads to missing what you are looking for.
... View more
09-01-2011
07:57 AM
Can you confirm the correct syntax of the CLI command? I am getting a syntax error when trying to use "debug log-receiver statistics" on a Panorama server running PANOS 4.0.4.
... View more
08-10-2011
10:01 AM
Can we get this functionality added in a future release of PANORAMA?
... View more
05-26-2011
08:53 AM
Is it possible to replace the PANOS 4.0 styles with the ones from PANOS 3.1? The higher-contrast colors that were used in PANOS 3.1 were much easier on my aging eyes. The very subdued PANOS 4.0 colors make it difficult to differentiate between different states - enabled/disabled/global/local rules for example. The new styling seems to me to be a triumph of style over function.
... View more
- Tags:
- management
- upgrade
Labels:
- Labels:
-
Management
05-02-2011
02:29 PM
Can you point me to the documentation that shows how to correctly set this up? I have been unable to find it myself.
... View more
05-02-2011
11:30 AM
In our firewall rules, we would like to be able to block access from certain countries. I know this available in several products including pfSense - http://doc.pfsense.org/index.php/Country_Block Is this something that your devices currently support? If not, is it something planned for a future release?
... View more
- Tags:
- policy
03-11-2011
09:38 AM
Does anyone know what the OIDs are for monitoring temperatures and other environmental conditions in the different PAN devices? The reference documents do not include this information.
... View more
- Tags:
- management
Labels:
- Labels:
-
Management
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks