VM100 keeps rebooting

Hi all,

We have a Palo Alto VM-100 running under ESXi 5.0 which up until this week has been rock solid. 

On Monday it rebooted itself.  No config changes had been made for almost a month prior to this.  It also rebooted itself twice yesterday and once

Memory usage

The device model is 3020.

From the output of >show system resources, we have found that the memory usage is 3781100k

Is it alarming high memory usage?

PA Functionality Question: Log NTLM Header

Hi Guys,

With a PA-3020, can I log the NTLM username of an authenticated HTTP request?

The situation:

• PA firewall is located between end users and proxy server
• Proxy provides NTLM authentication
• Can I log the username of each NTLM authentication request

Th

Questiona about Opera-Mini Browser Application

Hi Guys,

We have followed the below suggestion to block the Opera-Mini Browser application

Re: Block internet access using Opera Mini

However, during our test, although traffic log says its getting denied, but users can get to the first or second page o

ISP Redundancy Configuration Assistance

Hello All,

We recently contracted with a second ISP for redundancy.  I have been looking for instructions on how to set this up, but have not had much luck.  I did find the following articles, but none of them actually show how to completely set it up

FTP passive mode issue

Hello All,

I was read somewhere on this forum similar article from October 2014, and seem that problem with passive ftp was on new content ID. However some time passed since, I have issue with ftp passive mode on my VM-100 (panos 6.0.5, content ver. 4

Zero-day vulnerability in Adobe Flash, CVE-2015-0313

Vulnerability Coverage:

Wildfire AV - WF 52532 (today) (PAN-OS 5.0+), and AV 1478 (tomorrow). Virus/Win32.CVE-2015-0313.a

IPS Signature- Planning to release with 2/3 IPS signature release

URLs associated with Malicious SWF samples:

Malicious domains add

Enabling forward trust certificate

Hi all,

I'm hoping someone can assist.

I can't enable the Forward Trust option for a cert that I generate using either a self-signed CA or 3rd party CA.  The check is either greyed out or it's an option but doesn't keep the check after I hit OK. Any

UniDirectional Link Failure Detection without UDLD

Hi,

Does anyone know the network appliance could detect uni-directional link failure of SFP+ without UDLD?

I tried the test with PA-5060 and Juniper-EX,

but SFP+s kept link-up cause TX might continue to shot laser when RX came not to receive laser from

Blocking Facebook apps without ssl policy

We are trying to let users to have read-only access to Facebook' but not allow them do posting or download anything from it.   We don't have SSL policy.  Can you block Facebook posting with you SSL policy decrypt traffic?

Thank you