Higher gainer low threat

If you have an app that is being seen a lot in the logs but has a low rating and is skewing you results is it possible to exclude it from the threat prevention analysis?

Limit internet traffic in PA-2050

Hi,

Can i limit the out internet traffic in PA-2050???

Thanks

Is there a way to automate reporting of "auth-fail" system log messages?

Hi,

I'm looking for a way to automatically/proactively report on auth-fail system log messages and not finding anything obvious. Some things I've tried;

1. I can send email under log-settings -> system -> informational, but a bit too chatty with all th

Content package downloaded but installation could not be scheduled

I get this error on a fairly frequent basis, probably at least a few times a day with 2 of my PA200 firewalls. It mostly happens with Wildfire updates, which is scheduled to download and install every half hour at 15 minutes past. I have the rest of

Using Virtual-Wire to isolate and allow/deny traffic to a couple hosts on existing subnet.

We have a situation as a result of going through a PCI audit. We have a single subnet which contains a handful of servers that need to be isolated and traffic restricted. Originally we were going to move these few servers to a new switch VLAN changin

Custom App-ID with net.tcp as Parent App does not work

HI all,

Been trying to build a custom app-id for an application which the PA currently recognizes as net.tcp.

- tried different patterns with no success.

- currently using the unknow-tcp-req-paylod as the context identifier.

- tried a plain text pattern

Reporting based upon QoS

Good afternoon,

I'm looking to see if anyone knows a way or has created a report based upon QoS statistics (Network --> QoS) based upon application, bandwidth etc. 

It would be great to generate a report (PDF, CSV, etc.) of the QoS stats over a period

Unique URL Problems

I've been working on trying to get updates for Nagios while using a Custom URL Catagory and application filtering. I have a list of URLs configured in the URL catagory and the applications we are using to update our box however, we continue to get a

PPPoA config for UK

I'm configuring a PA-200 for deployment to England. I will not be on-site when the device is cabled, so I must be sure all configs are good beforehand.

England uses PPPoA instead of PPPoE.

Using the WebGUI, if I go to the IPv4 tab on the Ethernet Inter

Analyzing Multicast on Tap interface?

Is it possible to analyze multicast traffic on a tap interface?

I am unable to commit a multicast policy bound on a tap.

Tap {
  to multicast;
  from Tap;
  source any;
  destination any;
  source-user any;
  category any;
  application any;
  service applica

Upgrade firewall version 6.1.1

Anybody already updated the firewall version for 6.1.1 ? What´s the step by step for the update ? Did you find any problem ?

tks

more than one mirror decryption interface

is it possible to forward decrypted traffic using more than one interface  ?

what will happen when we choose 2 eth for decrypt mirror with 2 decryption profile ?

PANOS Release 6.1.3 Required to login twice to get access

Hello,

I've a cluster of PA500 running 6.1.3.

When I try to login to the system (with the GUI), the login always fails and I'm redirected back to the login page.

After login again, it works fine...

Any idea ?

Regards,

HA

Interal Architecture of the fpga / asic for pa hardware models

Hi,

I've been searching for documentation on the internal architecture for pa5000 series (pa5050 to be precise). I've not been able to find it however. I'm especially interested in how the fysical interfaces are connected what the throughput of the di

SSL Inbound decryption and nginx webserver

Hello,

I try to configure nginx 1.6.2 (on linux ubuntu server 14.04 LTS) with fully support SSL Inbound decryption.

We're running PAN-OS 6.0.9.

Based on the document Inbound SSL Decryption Not Working Due to Unsupported Cipher Suites, I configure this o