General Topics

Address object Best Practices FQDN or IP Address

Is there any down side to referencing your address objects using FQDN? Does it add significant load to the PA?

CNSE study guide for 6.x?

I am curious when the CNSE 6.1 study materials might become available.

Thank you.

Bob

BGP Routes advertisement.

Hi All,

Please suggest me on how to advertise networks in BGP.

Thanks,

Global Protect

Hello All,

Need your help in understanding Global Protect license.

Customer has PA-500 and it supports only 100 SSL VPN connections.

Is it possible to upgrade the number of SSL VPNs to above 100,200 upto 500 by procuring GP license.

Thanks.

DHCP Server in PA

Hi,

I have a client who has configured DHCP server in its Catalyst6500, he has configured 35VLAN aprox with dhcp server in each one. They have having problems in C6500´s CPU because of DHCP and a bug in this switch. Could they configure 15 VLAN in the

Add throughput to GUI?

Is it possible to add system throughput info to the "System Resources" widget on the GUI dashboard?

thanks

//moe

Upgrade PanOS 6.0.5 and UserID

Hi, we have a cluster PA-2050 with PanOS 5.0.8 and UserID agent version 4.1.6-5.

We are going to do an upgrade to a PanOS 6.0.5. Is there any critical issue in this 6.0.5??? Its necessary update the User-id agents too????? we dont want to update at l

Can I use a copper and fiber GBIC as an aggregate interface in 6.1

I have dual connections from 2 core switches into my PAN cluster however I need one core to be connected by copper and one is over fiber. Can I aggregate these interfaces in 6.1?

Using a VM100 at the perimeter

Hi,

We are looking at deploying a VM-100 at the perimeter of our network. We currently have a PA-500 doing that job.  It is incredibly slow on the management side of things and quite frankly, expensive when it comes to support renewals.  Hence the tho

VM100 keeps rebooting

Hi all,

We have a Palo Alto VM-100 running under ESXi 5.0 which up until this week has been rock solid. 

On Monday it rebooted itself.  No config changes had been made for almost a month prior to this.  It also rebooted itself twice yesterday and once

Memory usage

The device model is 3020.

From the output of >show system resources, we have found that the memory usage is 3781100k

Is it alarming high memory usage?

PA Functionality Question: Log NTLM Header

Hi Guys,

With a PA-3020, can I log the NTLM username of an authenticated HTTP request?

The situation:

• PA firewall is located between end users and proxy server
• Proxy provides NTLM authentication
• Can I log the username of each NTLM authentication request

Th

Questiona about Opera-Mini Browser Application

Hi Guys,

We have followed the below suggestion to block the Opera-Mini Browser application

Re: Block internet access using Opera Mini

However, during our test, although traffic log says its getting denied, but users can get to the first or second page o