Integrated User-ID Agent vs. Windows Service?

We're running 5.1 right now and plan on upgrading to 6.1 over the next couple of days.

Historically we've used the Windows User Agent on two of our domain controllers, but today I switched to the on-board Integrated User-ID Agent and set it up, and ot

Is SSL decryption will increase the number of sessions?

Hi Team,

My doubt is that,..doing SSL decryption will increase the number of sessions?

example : if i access gmail there will be one tunnel established to the server (gmail) inside which text chat, video chat, other apps will be there.

Now if i enable

Global Protect not connecting

Hi Community,

For the past 2 days PA's globalProtect is really becoming a headache for me. PA is becoming pain for me on these days.

It won't connect, stated as not connected, sometimes it stuck at "Connecting", and if that's the lucky hour, it will co

<deleted>

<deleted>

Except Specific IPs from port scan detection / Zone Protection

I have a highly regulated environment with multiple internal security zones. We need to be able to run our vulnerability scanning solution against servers in separate zones on a routine basis.

It was simple to exempt the scanner's IP from the Threat P

NAT DIPP fallbacks

Hi there

Im seeing  NAT DIPP fallbacks quite a lot relating to a NAT rule, theres does not appear anything not working so im wondering if its somehting that im not noticing work.  Ocasionally it feels more sluggish that it should when browsing web pag

Runtime bandwidth shows more than maximum egress

Hi ,

Runtime bandwidth shows more than maximum egress value ? . What could be the reason 

Thanks

SQLinjection not being detected by PA

Hi, we are receiving these tries about SQL injection but our Palo alto is not detecting it. How can we do that PA detect this SQLi????? we have updated the threats signatures.

Sql injection

GET /ficha-modelo?id=2&entidad=99999999%27%20oR%20%277%27=%27

Active/Active L3 problem with asymmetric routing and NAT

I'm stumped.  I've looked through as many pieces of documentation and discussions as I can find and I think I have everything set up correctly, but it's only half working.

What I have is two PA-5050s in Active/Active.  I have two routers on the outsi

Hybrid whitelist/blacklist Policy

I played around on our lab FW a bit but couldn't get this working. Here are my objectives:

- Create a "White List" custom URL category that allows only a handful of web sites. (Working with URL Filtering profile.)

- Log all permits (Working. I got this