This message was deleted.
# citrix-clouds
Slackbot
02/14/2024, 9:44 PMThis message was deleted.
k
Khanh
02/14/2024, 11:31 PMWe use Palo also but do not have this issue. Can you use wildcards?
c
Cory Zaner
02/15/2024, 4:11 AMWe also use Palo no issues.
c
c4rm0
02/15/2024, 9:23 AMThe FW guy has told me cant use wildcards so i had to get each URL added from the JSON file
c4rm0
02/15/2024, 9:36 AM@Cory Zaner do you have all the Citrix cloud URL's added by FQDN or are you using wildcards on your Palo Alto?
c
Cory Zaner
02/15/2024, 2:01 PMYea where it’s documented it have the other are norm
k
Khanh
02/15/2024, 3:53 PMThey will need to do a packet capture on the Palo to see what is being blocked
c
c4rm0
02/16/2024, 11:03 AMNothing should be blocked as they added all the URL's by FQDN from the json file and nothing has changed in that json file for a while and this has been working for months https://fqdnallowlistsa.blob.core.windows.net/fqdnallowlist-commercial/allowlist.json
o
Owen Reynolds
02/23/2024, 5:32 AMRecently, I was putting in on-prem Citrix into a Palo Alto firewall shop where Citrix wasn't common. It was tons of work to whitelist stuff. I think it depends on the knowledge level of your networking folks. I was getting different answers from different people depending on which network/firewall dude I was talking to. It's mostly working now, but, from my experience , Palo Alto is great when it's implemented correctly, and a huge PITA when it's not