Resolved! active/passive HA setup with existing production firewall

I have a second PA-500 I need to add to an existing production PA-500 for active/passive HA. I have read the admin guide for HA setup, but it appears to be for two pre-production firewalls. Are there any special precautions I need to take into accoun

Resolved! Applications for Internet web browsing?

Hello

I am not doing SSL decryption on PA, then all internet web-browsing would be boils down to SSL and web-browsing applications, right? So in security policy if I want to allow internet web browsing then allowing applications SSL and web-browsing

Resolved! unknown-tcp and web application

Hello Experts

Just want to know, 

1- If PA can not identify the web application then it will classify it as SSL/Web-browsing or unknown-tcp?

2- unknown-tcp and unkown-udp is only for client/server application?

Regards,

GR

Resolved! Custom Application and TAC

Hello 

Can I request to TAC to create custom application or I have to do by my self? I found this but I guest it is for public application not for internal.

http://researchcenter.paloaltonetworks.com/submit-an-application/

Resolved! Hardening the security rule for service ports

Hello Experts

In my firewall configuration, many security rules have specific application but service ANY. I would like to harden service part as well. Once I veiw the logs for particular security rule to check service ports, there are many pages, I

Resolved! Configuration Management

Hi,

I have a further question:

I don't understand the configuration management yet.

The option "Revert to last saved configuration", what does that mean?

When is a configuration saved? Every time I commit ? Or only manually?

Maybe I have done changes on

Resolved! Captive Portal - Source Untrust

Hi everyone, I have a Web Server and i want login users with a Captive Portal,

can I use the CP with Source Untrust to DMZ (where is my Web Server)?
its recommended?

Thanks a lot

Matt.