Quick question that may have an even quicker answer. Is there any functionality to monitor users web browsing history through a Palo Alto 2020 box?
And if the answer is yes then is there any functionality to perform traffic shaping? And I don't just m
...
Hello,
Just installed Global Protect 1.1.6 for first time and it seems to be interfering with our companies PGP Single Sign-on.
Initial authentication to the System PGP works fine. Normally the system then takes you to your normal windows screen and
...
Hello,
We have a PAN 2050 that the front panel alarm is red, I want
to know how can I determine which Hardware is in failure state ? from CLI or
web interface?
Thanks
Belal Sadozai
Hi all,
We're currently deploying a PA-2050 firewall in HA mode in our headquarters. We plan to protect all data lines entering or leaving the HQ through the new firewall - including our MPLS WAN infrastructure where we run a lot of time-sensitive Cit
...
Hi All,
Captive portal is working fine for http traffic( asking for authentication ), But for https traffic it is not asking for the authentication. For example if user types facebook.com, asking authentication if types https://facebook.com then it is
...
I noticed that when I download programs from the Internet with Decryption turned on, the downloaded file says "The publisher could not be verified", whereas if I grab the same file off a non-decrypted connection I do not get this same message.
How do
...
I've browsed through these forums regarding the best way to block applications. I've saw the posts of folks blocking applications by app filter.
I have AD integrated AD groups. These groups tie to individual Palo Alto security rules that allow any
...
Hi,
i want to place a policy with fqdn entrys completed with wildcards.
e.g.
Our PCs have names like this:
LABPC01, LABPC02, LABPC03
Now i want to deny the internet traffic for every PC with the name LABPC*
But i also want to allow it to a special list of
...
On the website EICAT TESTVIRUS resides a lot of different kinds of eicar. Most of them will not be recognized by the Palo Alto Networks AV-Engine. The behaviour of the firewall is thereby a bit confusing. It seems: if you click on the links more the
...
I have a policy setup to deny gmail and if a user has an Apple laptop or desktop they can get to gmail via https. On a Windows laptop/desktop the deny policy prevents it, even when using Safari on Windows. Anyone seen this and is there a way to pre
...
Hi,
We have recently updated to 4.1.6 which gives more funtioinality regarding Security Policies.
I would like to know what steps are required to mix apps and URL categories in a single policy.
I had wanted to grant a user iTunes Access by Adding App-ID
...
Hello,
Two months ago we correctly set up a rule to block Brute Force attacks on our FTP server in DMZ.
The related information can be found here: https://live.paloaltonetworks.com/message/16977#16977
We tested it manually by just entering wrong passwor
...
具备Land攻击防范功能
具备Smurf攻击防范功能
具备Fraggle攻击防范功能
具备ICMP Flood攻击防范功能
具备地址扫描攻击防范功能
具备带路由记录选项IP报文攻击防范功能
具备超大ICMP报文攻击防范功能具备time-stamp攻击防范功能
具备带源路由选项报文攻击防范功能
具备端口扫描攻击防范功能
具备ICMP不可达报文攻击防范功能
具备ICMP重定向报文攻击防范功能
WinNuke攻击防范功能
We are having some issues with our remote sites as they browse the internet through the central site however they authenticate to Domain Controllers locally in the remote sites.
When we enter the remote site DC's in the pan-agent (which resides in the
...
Is it possible to set priority based on application? Most of the configurations I've found were to limit bandwidth to certain applications, so I'm curious if this is even possible.
On my PA-500 I created a QoS policy with the smtp application and set
...
BPry
on:
Explicit proxy chaining
Raido_Rattameis
reaper
on:
Global Protect Portal/Gateway infrastructure
BPry
on:
GlobalProtect and other VPNs
BPry
on:
Action=Allow while NATDestinationIP=0.0.0.0
| Subject | Likes |
|---|---|
| 4 Likes | |
| 3 Likes | |
| 3 Likes | |
| 3 Likes | |
| 2 Likes |
| User | Likes Count |
|---|---|
| 14 | |
| 12 | |
| 8 | |
| 7 | |
| 6 |
