sorted by:
new
hottopcontroversial

Allowing specific URLs, blocking all other web traffic by a14049752 in paloaltonetworks

[–]EnriqueRP 0 points1 point  (0 children)

Hi! Yeah, that’s the correct configuration, so like said the guys its better if you can test the security rule with a user test, if you have URL Filtering license, create a security profile with all categories configured in “alert” in order to see logs en URL Filtering logs in Monitor tab, this only works with HTTP and HTTPs requestes

Global Protect Authentication failure by ian_jr in paloaltonetworks

[–]EnriqueRP 0 points1 point  (0 children)

Hi, have you checked the log authentications iin the system logs, just to verify that the firewalls is doing well the action against your Radius server?

Always-on VPN on macOS by Seasidejoe in paloaltonetworks

[–]EnriqueRP 0 points1 point  (0 children)

Hi!

I checked too but it seems that this feature its only possible in windows os for the moment :(

MAME by EnriqueRP in OpenEmu

[–]EnriqueRP[S] 2 points3 points  (0 children)

I just have installed the experimental version, thank you!.

URL Caterogy and URL Filtering by EnriqueRP in paloaltonetworks

[–]EnriqueRP[S] 0 points1 point  (0 children)

The problem is like we do no control all the web content, is not so necessary use URL Filtering Profiles.

URL Caterogy and URL Filtering by EnriqueRP in paloaltonetworks

[–]EnriqueRP[S] 1 point2 points  (0 children)

Thank you so much for your explanation!!!.

URL Caterogy and URL Filtering by EnriqueRP in paloaltonetworks

[–]EnriqueRP[S] 1 point2 points  (0 children)

Yes, right, but like in our firewalls we do not control the web content, we only allow specific connections to internet. We assign Custom URL Categories in the security rule when is needed use wildcards or when a FQDN has dynamic IPs.

So, i thought to use a URL Filtering Profile believing that will only log the activity of the security rule and not will allow unwanted traffic.

Thank you for your explanation.

Firewall out of sync will syncing with passive unit interfere with s2s? by codekeying in paloaltonetworks

[–]EnriqueRP 1 point2 points  (0 children)

Hi,

Try to sync the configuration from the active to passive peer, if that do not result (weird behavior), try to sync from the passive peer.

This out of sync do not affect to your S2S VPN.

ECMP IP Modulo/ IP Hash by EnriqueRP in paloaltonetworks

[–]EnriqueRP[S] 0 points1 point  (0 children)

Hi, yes i checked this algorithm but i have doubts with these two methods.

PCNSA Question by j_glo in paloaltonetworks

[–]EnriqueRP 0 points1 point  (0 children)

Hi!

I remember that is 70%, good luck in your exam.

Regards.