I whitelisted a site and they are able to access it but not when they connect to VPN. Looking for assistance with this.
hi,
I have set up two palos in different az's in AWS. I have utilized the gw lodbalancers and done the bootstrapping so to get them "healty" etc. The soultion is working fine!!
But I am having a very hard time understanding how to get the panorama
...
As I see many people doing AWS GWLB or Azure GWLB integration with Palo Alto there are good Live Community videos for that in Youtube:
https://www.youtube.com/watch?v=c28ZwlhCIWE
https://www.youtube.com/watch?v=RFfQbSDSxlE
Looking for some help here. I have an ongoing case with support concerning AWS tunnel issues. My production FWs are active/active but not in sync. Just always been that way, it's the way I inherited it. I have 4 tunnels to AWS (2 on each FW) BGP
...
i have a server sending traffic on 443 through GWLB to my Palos and out to the internet
The logs all say 'aged out'
Packet capture reveals the SYN arriving wearing GENEVE, being de-encapsulated, source NATed and forwarded out Untrust
The SYN/AC
...
Hello
I'm deploying infrastructure on Azure with Palo Alto firewall. We will host web application (appli1.company.com & appli2.company.com) on a vnet dmz. My design is based on Hub/Spoke configuration and I configured an vNet Peering between my DMZ
...
I cannot change the subnet for two Cloud NGFW endpoints on the Portal. The admin portal says I am not authorized even though I am a tenant admin.
I am trying to change the subnet because the subnets the firewalls are configured to no longer exists a
...
NOTE:
This appears to have been an issue in the Cloud space. I suspect a VMotion or reboot of the VM Host resolved the problem as an unrelated issue with spinning up access to the VM was resolved at the same time this HA issue was resolved and no co
...
Hello
I'm deploying my first Palo Alto on Azure (I already deployed physical appliance) but I'm blocked.
I would like to deploy this type of design. The global network defined is 10.200.0.0/16 who are splitted in serverals sub-networks. I have o
...
Hello Everyone,
I have deployed PA-VM in GCP. In that we have configured 3 VPCs (MGMT, Untrust & Trust).
In the Trust VPC we have created Windows Server 2016, in PA we created D-NAT & Security policy.
In GCP, Under Trust VPC Firewall Ingress tr
...
Hello
I'm deploying a Palo Alto on Azure. I want to use 2 interfaces : one interface (eth1/1 configured with public-vr router) dedicated for Internet outbound (including for users connected with Globalt Protect) and one interface (eth1/2 configured
...
My company has had an issue for over a year and Palo Alto cant figure it out. We're using Azure's Palo Alto offering.
* We have a security rule that is sourced from our trusted paas and destined to Azures Paas storage. Port 1433 app id: mssql db
...
Hello all,
After some help as not getting much from support.
We have a customer with an Amazon AWS solution. We have a web server in the trust zone and we have been asked to set up inbound ssl inspection.
There is a load balancer after the firewall
...
Hi,
I'm trying to deploy two tier architecture in my lab.
Below is the VPC & Subnet details:-
VPCSubnetIP RangeMGMTmgmt-zone192.168.0.0/24Trusttrust-zone192.168.1.0/24Untrustuntrust-zone192.168.2.0/24
PA-VM has been deployed successfully & also
...
Hi,
I have configured PAVM in azure with IPv4 and everything is working fine. so I decided to add IPv6 as a Dual stack. And Azure provided me single Public IPv6 and it configures on the Azure load balancer and mapped with an untrust interface on the
...
reaper
on:
Unable to create tac case
reaper
on:
The device is not found or not registered, please try after some time
aleksandar.asta
