PA blocks spyware - identify compromised computer

Hi there,

we're running the following setup:

trusted zone | DC zone | Internet

Client/Proxy/some old DNS Server| DNS Server| Internet

I see that the PA is blocking malware traffic (app DNS). But the attacker is either the proxy, asking the DNS in the DC

802.1q tagged sub-interfaces on PA-500 v6.1 not working

I'm trying to consolidate multiple Layer3 interfaces into a single Layer3 interface using subinterfaces and VLAN tagging, but it's not working.

I'm hoping someone can point out the error in my configuration.

The current working configuration:

FIREWALL
et

Gp Configuration

Hello Friends,

We want to  configure our Remote VPN (Global Protect ) on two ISP and  we should be able to  manually switch the gateway at client end and no Lic is required for that?. Please suggest.

Regards

Satish

HTTP Header - Logging NTLM Username

My PA firewall inspects traffic between my users and proxy server. The proxy server provides NTLM authentication. Is there a way of logging the NTLM authenticated username within the http headers?

Replace a device (s/n) in Panorama Policy with an RMA s/n

Hello -

Wondering if anyone has come across this issue.  We recently had to RMA one of our firewalls and we have a fairly extensive / complicated policy set in Panorama which consists of the following:

Shared Pre Rules targeted to specific firewalls

Palo sending email issue

Is anyone else having the "failed to forward log to mail server: aspmx.l.google.com" causing a "mailclient: error reply: 421 4.7.0 Email Senders Guidelines. l.12 - gsmtp"  for google's mail?

Possibly started with 6.14 and maybe 6.13. I had my email se

Why did global protect disconnect? SSL_read() failed: 1 -1 socket error 0

I have a user that is reporting that when they use Skype video conf while connected via Global Protect the VPN connection is being dropped. Looking through the GP logs it seems to indicate there was a connection problem, but the client initiates the

Wildfire Email Link Test url

Hey All,

Does there exist a way to test the Email Link feature of Wildfire with some sort of test url that always gets sent to Widfire and is always Malware?

Like the http://wildfire.paloaltonetworks.com/publicapi/test/pe link to download a Wildfire te

Changing the default management ports on panorama

Hi all,

Is it possible to change the default ports for the management interface?

for example i want to enable connection to panorama management on HTTP with TCP 1234 and not TCP 80.

Getting traffic from tunnel interfaces in MRTG

- I can plot data from physical interfaces (from the PA) in MRTG, such as for  instance
data from Eth1/1 and Eth1/2.  But MRTG's cfgmaker doesn't get any info about tunnel
interfaces. Could this be made possible, for instance by adapting some changes