Cisco Wireless Networks, ACS, Syslog-Senders, and AD Groups !

Hi,

I've worked out how to recover the User ID, or UID, from a wireless network logon by sending syslog messages from the Cisco Access Control Server, or ACS, to a syslog-sender configured on my firewall.

For wired connections I can recover UID and AD

How to configure a pa-500 with 2 inputs

I have a PA-500 running as a web proxy, The connection from the inside is a ASA-5512 (required), except that I have 2 5512's running in active-standby failover mode. How do I connect both 5512's into the PA500 so that if a failover happens the traffi

Zone Configuration

Firstly, apologies if there is already a thread on this.

I have a pair of PA5020's running in HA mode with PAN-OS 6.0.5-h3

When trying to create new interfaces I get the following errors

Interface X has no zone configuration.

Interface Y has no zone co

Panorama 6.0.4 and PA-200 6.1.0

Seems like the PA-200 will not connect to Panorama after software Update to 6.1.0

Just wanted to check if this is the case. (Panorama needs to be at least 6.1.0 to get the PA with 6.1.0 connected, or if i have an other issue)

thanks,

Kai

GlobalProtect Prelogon - using non-cached AD account

So i 've been having some issues getting GP prelogon working correctly.  As of right now - GP will make the VPN connection before logon(i am able to ping my device prior to logon) and after i login with a cached account it maintains its VPN connectio

VPN flapping

Hi, we have configured a VPN site-to-site between Juniper SSG and PA3020. The tunnel is flapping up/down. The VPN is well-configured and we have configured VPN monitor with Rekey option in the SSG.  How could we know why the tunnel is flapping all th

Win32.Conficker.C p2p-block

Is it possible to block this spyware specifically Win32.Conficker.C p2p and where it the best place to do it?

Meru Integration with PANOS 6.1.5

HI Folks,

We're trying integrate our Meru system with Palo Alto Networks. but can't find any documentation.

As far as i can see we have two options:

- Radius

- Syslog feed straight to the PA device.

Has anyone created the regex's / parsers for Meru and Sy

PA device responds to unwanted ARP requests

Hi,

I've stumbled upon a tricky situation that I've managed to resolve but still don't know why PA did what it did.

The scenario is as follows:

1) Internet traffic comes into PA from the WAN zone, internal users use the LAN zone.

2) There is a DMZ switch

What's mean for counter "flow_fpga_rcv_err" ?

Hi guys,

Sometimes, the firewall has got a increasing drop counter simultaneously as following.

"flow_fpga_rcv_err" - Packets dropped: receive error from offload processor

packet drop : offload processor parse error

I want to know it is expected behavior

Session behaviour during vrouter changes

Hi everyone,

We've got a number of virtual-routers in our PA-5050s and we're looking to do some consolidation to simplify the configuration.  Basically, we're looking to reduce the number of vrouters by moving interfaces that are currently in differen