Blocking Internet Access based on User-Agent

I am currently researching a way to be able to intercept traffic from an unsupported IE browser and then be able to feed that information about the host, mainly FQDN hostname or IP address of the host into the PAN dynamically based on the user-agent:

Failed to find PANPG virtual adapter interface

Hi all,

I am experiencing this issue with Global Protect : "Failed to find PANPG virtual adapter interface".

The version of GP is the latest released 2.3.3.

Version of client is Windows 8.1.

I have already tried:

- Uninstalled Anti-Virus

- Disabl

Panorama commit to PA4060 hangs at "commit" process 99%

I support 10+ 4060's (Ver 5.0.15) and for several years had to deal with Panorama commits pushes to boxes increasingly taking longer and longer to complete (like 1-2 hrs). Workaround had been to script a daily login and running of the "debug software

Configure Backup ISP

Not sure this is the right venue or forum to post this, but I’m looking to set up an automated failover to a backup ISP line per the attached network diagram of my environment.

I’m new to PAN and the PAN way of doing things so thought I’

PAN HA P/A with GLBP on core

Hi Everyone,

Is it possible to setup a passive/active HA setup when the core switch pair are using GLBP to load balance end-user traffic ? Essentially, I will have two cores in A/A and the PANs in P/A. I am using PA-500s.

Panorama connectivity issue

Hi everybody,

When I configured my new firewalls to register with my panorama, they didn't appear.

I checked the following points:
- Connectivity between my firewalls and my Panorama : OK => I do some packet captures on both side
- TCP bidirectional t

MT 3.1 and CheckPoint VSX

We're running a really old version of CP 71.40 running VSX with multiple virtual firewalls.

This document describes where to get a config file from, but this does't account for a virtualized enviornment and the file nor directory exists for these v

Resource-unavailable for http traffics

Hi All,

Some of the sessions are ended with Resource-unavailable reasons. Almost all traffics in these sessions are web-browsing and some updates traffics on port-80.

All https-443 are working fine. this issue happened for 4 hours on last week. 

creating vsys

Hi ,

I would like to create , vsys for routing .P resently fw is runnin in virtual wire mode .
How i can copy the same policy which is in another vsys

Thank you

what ports updates server is using ?

customer can not update lic through  method of Retrieve license keys from license server, Maybe their ASA stop some ports.

I want to know updates.paloaltonetworks.com is using what ports. Expect someone can help me !!!