Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Live
- ›
- About FarzanaMustafa
About FarzanaMustafa
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Online
150Posts
18Likes
14Solutions
Nov 30, 2020Last Visited
User
Activity
User
Profile
Latest posts by FarzanaMustafa
| Subject | Views | Posted |
|---|---|---|
| 117 | 2 weeks ago | |
| 141 | 3 weeks ago | |
| 204 | 3 weeks ago | |
| 278 | 10-22-2020 02:16 PM | |
| 205 | 10-21-2020 05:11 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 | 02-27-2019 03:12 PM | |
| 1 | 04-18-2019 02:58 AM | |
| 1 | 10-24-2019 09:51 PM | |
| 1 | 02-03-2020 01:32 PM | |
| 1 | 01-08-2020 09:44 PM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 | |||
| 2 | |||
| 3 | |||
| 1 | |||
| 1 |
User Badges
Public Statistics
| Date Registered | 10-01-2018 12:02 AM |
| Date Last Visited | 2m ago |
| Total Messages Posted | 166 |
| Total Likes Received | 18 |
2 weeks ago
Hello, On 14th November at 4:53PM AEDT, we were receiving the following syslog message: "Request made to PublicCloud server returned with HTTP response code : 502" We kept on receiving this message every 5 minutes approximately till 21:46 on the same day. No change was made at our end, we were still able to browse the Internet, Licenses are valid, we could check the license and dynamic update files therefore I am unable to determine what the consequences of this alarm are. Can you please confirm if there was any issues on the public update servers?
... View more
3 weeks ago
Can anyone please confirm if below is the expected behavior of the GP Android App with internal gateway on Chromebook? When inside the network with internal host detection GP greys out. Using GP 5.2.2 If GP greys out after connecting does this mean the user should be detected by the portal without a tunnel establishment?
... View more
3 weeks ago
We got certificate tree like this: the public certificate (Trusted root CA) from Digicert, Intermediate cert (Digi root) and then the SSL/TLS cert (DigiVPN). This DigiVPN is going to expire soon and we use it for GP portal and GW. The server cert is by itself and got a tick next to CA column. It is valid till 2023 and used as cert profile in GP. Just want to know if DigiVPN certificate has to be installed on each client/end machines or only required to be updated/renewed on Panorama. Thanks in advance.
... View more
10-22-2020
02:16 PM
I'm not looking to monitor Palo Alto metrics using CloudWatch but need to push logs from the firewall to CloudWatch logs. We can see in cloudtrail that the PANs are trying to create CloudWatch log groups, but aren’t allowed to. I found this article talking about granting it access to create log groups, but we don’t actually want it to be creating logs if we can help it. https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-firewall-o... I tried disabling CloudWatch Monitoring, but that only affected the Metrics, and they continued to try and create log groups. Can you please advise how we can disable this feature?
... View more
10-21-2020
05:11 PM
We can see in cloudtrail that the PANs are trying to create CloudWatch log groups, but aren’t allowed to. I found this article talking about granting it access to create log groups, but we don’t actually want it to be creating logs if we can help it. https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/deploy-the-vm-series-firewall-on-aws/vm-series-firewall-startup-health-logs-on-aws I tried disabling CloudWatch Monitoring, but that only affected the Metrics, and they continued to try and create log groups. Can you please advise how we can disable this feature?
... View more
10-20-2020
05:08 PM
is there a way to check GP license usage on the firewall? Our firewall license should allow 2000 GP connections but we would like to see how many are used at this time. Thanks in advance.
... View more
10-14-2020
04:26 PM
Thank you! After upgrading the Panorama and FW to 9.1.4, issue got resolved.
... View more
10-13-2020
08:22 PM
Hi there, I am trying to add a new firewall to panorama management following this guide: https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/manage-firewalls/transition-a-firewall-to-panorama-management/migrate-a-firewall-to-panorama-management.html At step 5.2; Export or push device config bundle, when I choose this option, I cannot see the firewall in the list. I can only see another gateway that is currently managed by this panorama instance. Under Panorama > Managed Devices > Summary > the new firewall is listed with device state as Connected Panorama panos: 9.1.2-h1 Fw panos: 9.1.3 Please help!
... View more
10-01-2020
11:48 PM
Will Path monitoring kick in if Enable HA is not selected? One of the KBs mentioned path monitoring failure which cause the loop condition.
... View more
08-26-2020
09:22 PM
Hi @BPry The entire list looks like web browsing (unified logs showing as such?) and as a result the botnet alerts are incorrect. Surely this is not normal behaviour?
... View more
08-25-2020
05:00 PM
A very high quantity of botnet false alerts being reported on our appliance. Using 9.1.3. Botnet report alerts as noted below: Repeatedly visited (10) the same URL 216.58.199.36/ Repeatedly visited (30) the same URL 142.250.66.164/ Repeatedly visited (69) the same URL 142.250.67.4 Visited malware URL tdsjsext1.life/ExtService.svc/getextparams . 216.58.203.100 resolves to app-id “google-base”/443 If you check the above IP addresses, you will see a common factor, it looks like this is normal behaviour for Googles ad platform? How to fix this issue?
... View more
08-12-2020
09:57 PM
What I am wanting to know is if I can add a range of IP addresses to a vulnerability exception. This would be the entire 1-254 range, rather than 1 IP address at a time. I have already checked the links below and they talk about adding IP addresses one at a time as an exemption. Rather than allowing the vulnerability for the entire site, I would like to allow it for 192.168.1.0/24 for example. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm60CAC https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClhcCAC
... View more
07-15-2020
02:29 PM
For our case, TAC suggested below. -- Regarding the error message I see that the error started surfacing starting from 5th Nov 20:55:53. -- However, the root cause of the issue is the sysd and snmpd crash on 6th Nov around the specified time. -- We have seen similar issues before for PAN OS 8.0.x which is related to group in MP memory. -- I see that the firewall is on PAN OS 8.0.18. -- PAN OS 8.0.x is end of life and is no longer supported. -- Please upgrade the PAN OS to 8.1.11 to prevent this behavior in future.
... View more
07-14-2020
04:07 PM
@David_Mcmasters Thank you so much! This helped a lot. We have removed polling to the host which stopped the alerts.
... View more
07-13-2020
10:25 PM
We have a PA that is displaying this message every 60 seconds for some reason. "highopaque: DO NOT CHOOSE WMI in ADGMEL03 FOR YOUR USE CASE IF SEE THIS LOG AGAIN" What is it indicating and how to turn it off?
... View more
07-07-2020
09:39 PM
How to force users to download the latest global protect to stop them using old versions?
... View more
07-05-2020
04:51 PM
We have duo access gateway setup, so disable the cookie is not an option.
... View more
07-02-2020
11:05 PM
We have Duo access gateway integrated with Global protect. It works most as per expected. However there is a small issue. When the client machine reboot , the user will go through the entire process to login the global protect. E.g 1. 1. They clicked the connect button on the Global Protect Client 2. 2. Then they wait until the Duo Windows pop up for asking domain credentials. Then redirect to next page to push or passcode. 3. 3. They completed the MFA challenge, then login However, if they click disconnect and connect right after, they will get in straight away without getting prompted. The manager wants this to be rectified that every time when the end user connect, they needed to be challenged with both Palo Alto and Duo. PAN-OS 9.1.3 GP Majority is 5.1 Please help!
... View more
07-02-2020
03:10 PM
@dgnewell Thank you the explanation. Is there any ramifications when we enter OTP into the configuration page (eg, will we have to reboot the FW / will there be any downtime, etc)?
... View more
06-24-2020
11:25 PM
Currently we can only see the logs for the files being blocked. Can we set up the logs to allow us to see the successful transfer of a file? Does Alert/Continue Action of File Blocking Profile log entry in the Monitor > Logs > Traffic?
... View more
06-01-2020
08:48 PM
Hello Team, I am after a setup guide for RANCID and PA. We are using PA220 (ver 9.1.1) and RANCID – VIEWVC 1.0.12, RANCID 2.3.2
... View more
06-01-2020
05:26 PM
We are having issue in building an IPSEC tunnel on a Palo firewall. Using ver 9.1.2. Getting below error 'IKE phase-1 negotiation is failed. Couldn't find configuration for IKE phase-1 request for peer IP... The peer IP type is Dynamic with no proxy ID in use. We are using IKEv1, DPD is disabled, NAT-t is enabled, Phase1 & 2 are matching at both ends, Exchange modes are also matching. PA is enabled in passive mode. We had to set DH Group to no-pfs under IPsec crypto profile. When setting no-pfs value is there any other setting we need to set on palo side for the tunnel to work?
... View more
05-12-2020
08:13 PM
We are currently running a Panorama virtual appliance in PANORAMA mode running on the ESXi host. Based on the predictable logs per second (LPS) estimation, we have allocated 16 CPUs and 32GB memory while the virtual appliance initially built up. At the moment, we only have one managed firewall connecting to Panorama and sending logs to the Panorama log collector, we noticed that the Panorama CPU utilisation baseline is around 1-2%. Advised by Palo Alto (reference) that "If the minimum resource requirements are not met for PANORAMA mode when you Install the Panorama Virtual Appliance, Panorama defaults to Management Only mode", I would like to know that after we have successfully install the appliance running on PANORAMA mode, can we then reduce the CPU below the resource requirements and keep it running on PANORAMA mode? That will be great if we can dynamically resize the resource of the PANORAMA appliance and keep it with the PANORAMA mode, as currently the oversubscribing CPU from the ESXi host will cause the waiting time of other VMs, while the Panorama virtual appliance doesn't need that many CPU resource with the current usage. Would you please advise? Thanks reference: https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/set-up-panorama/set-up-the-panorama-virtual-appliance/setup-prerequisites-for-the-panorama-virtual-appliance.html#id4430de3f-a44c-4b24-b9c3-52cef1f0bc96
... View more
05-03-2020
09:03 PM
We are using PA-VM-300 and it should allow 2000 vpn users concurrently. Our global protect IP pool is configured for /23, so firewall should accommodate 500 users, as it is having enough IP available in the pool. For some reason, when the other firewall failed due to internet outage, the main firewall did not allow more than 260 connections. We have not restricted any source user IP in the policy. Any idea how to fix this issue? PAN OS: 8.1.11 and GP version: 5.0.7
... View more
04-05-2020
09:42 PM
We are using VM-100 and would like to use this as a load balancer for our Web services. We have checked the link below and would like to know if this EMCP load balance incoming traffic to Web servers? Or does this just load balance egress traffic between 2 different ISP’s? https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClF8CAK
... View more
03-24-2020
09:25 PM
TAC Team has advised it is a bug in GP client version 5.0.7-2. It is being tracked as GPC-10176 and currently PA is planning to release the fix in the upcoming GlobalProtect client version 5.0.9. Alternatively we can use GlobalProtect client version 5.1.0 or later.
... View more
03-24-2020
09:24 PM
TAC Team has advised it is a bug in GP version GP client version 5.0.7-2. It is being tracked as GPC-10176 and currently PA is planning to release the fix in the upcoming GlobalProtect client version 5.0.9. Alternatively we can use GlobalProtect client version 5.1.0 or later.
... View more
03-23-2020
08:51 PM
HIP object is correctly setup. We are testing the missing patches HIP check object and noticed that an VPN endpoint is showing 3 missing patches (on the HIP report). However the machine is showing it's installed these patches already. How does Palo detect the missing patches as Windows is showing them as installed? Using ver: 8.1.10
... View more
03-17-2020
10:50 PM
Currently in User-ID, one ip address is associated with three usernames. Two of which are the hostnames of the computer and not the user so when the staff tries to access something, they are getting blocked. Do you have any suggestion to fix this? Clearly AD is pulling this information. Do I need to adjust something on Active Directory to fix this?
... View more
03-15-2020
10:26 PM
Is there a session limit on number of active connections while using GlobalProtect advanced features? Currently the PA box 3220 supports 1024 concurrent SSL connections and has a GP Gateway Advanced license installed.
... View more
Contact Me
| Online Status |
Online
|
| Date Last Visited |
2m ago
|
Likes Given To
Latest Blogs
Latest Posts
Copyright 2007 - 2020 - Palo Alto Networks
