WildFire unable to block the file

Dear Experts,

A file gets downloaded through PA, in WildFire submission logs I can see the action as "forward" as expected. After that action is "wildfire-upload-skip" that means the file has been seen by wildfire before and the verdict is "Malicius"

Google Dynamic search unavailable after implementing "Safe Search + SSL Decryption"

I recently implemented Google Safe Search + SSL Decryption for a small test group and it all works as expected/described.

Thanks for the excellent documentation on this!

The only odd thing I noticed is that I seem to have lost the Google Dynamic Searc

SSH decryption with SFTP

We have an internet facing SFTP server for our customers to use and I wanted to enable SSH decryption to see into that traffic and potentially auto-block IPs trying to bruteforce their way in. However whenever I enable SSH decryption the SFTP session

vulnerability id 31327

Hello,

Start 10/13,  I have been getting medium threat alert for vulnerability id 31327 (Attempted Antivirus Detection Bypass via Malformed ZIP Archive).  I beleve it is my iOS devices connect to apple store to download app updates.  Anyone else sees

SNMP and ARP

Is there a way to pull the ARP table from a firewall using SNMP?

We have tools that utilize the ipNetToMediaPhysAddress (OID repository - {iso(1) identified-organization(3) dod(6) internet(1) mgmt(2) mib-2(1) ip(4) ipNetToMediaTable(22) ipNe…) on othe

set up TCP ports timeout

Hello Community,

I need to know if it is possible?

 change the timeout for the following TCP ports to 4 hours (14400 seconds)

TCP 1521
TCP 2101
TCP 1601-1630
TCP 2101
TCP 18400-18430

Best Regards

Andres Padilla

Dynamic virtual routers

Can interfaces be assigned to two different virtual routers so that for example if a particular static route stops working it will "dymanically failover" to the other virtual router which has another static route for the interface?

Sorry I'm pretty

PPoE with Static IP Block

Need to set up a small office with a PA-200 using PPoE. Simple enough...but the ISP has allocated a /29 static block (5 usable IP addresses). We currently have a few 1to1 NATs in place for an SMTP relay and web server so being able to use the entire

Identifying user rules UserID

Hi,

We are expecting several issues with user identificatiom. We see connections identifying users but suddently the connections stop identifying. 

I attach an screenshot

Globalprotect client unable to connect even with IE Proxy exception

hello,

Assuming my users tries to connect from the outside using their ADSL at home

Currently running PA-3020 ;

Sofware Version 7.1.6

Globalprotect Agent 3.1.4

- GP clients are all installed on windows 10, running in a domain with GPO for IE11, proxy i