General Topics

Server certificate verification failed

Hi there,

I wonder if I can finally resolve my continuous problems with GP and Windows machines.

I have 0 problems with Android and Apple devices but Windows XP,7,8 or 8.1 give identical outcome. Problems, Problems and more problems.

Please let me start

Has anyone been able to correlate performance issues due to the number of security rules present?

I was thinking about writing very specific security rules for around 15 hosts.  The rules would essentially whitelist traffic by destination ips and application.  I am somewhat concerned that adding this many additional rules could potentially slow t

PanOS 6.0.7 posible bug with dns_proxy

We have tested the new version 6.0.7 and have found a problem with the dns proxy. The service stopped working.

Best regards

Advice blocking URl/ZIP

Hi,

We are receiving the same emails,which last 28/11/14, infected our system with cryptoloker. These links come from different domains but have in common the following url

http://xxxxxxxx.xx/Billing/invoice.zip. How could we avoid that if someone clic

VPN commands

Hi Friends,

I need cmd for tunnel up time status.I mean I want to look how many days tunnel is up and down.

Regards

Satish

Optimization tips for GlobalProtect?

Hi Guys,

Does anyone have any optimization tips that they've done for GlobalProtect? Looking for ways to speed up auth in the event the client gets disconnected when the device switches from wifi to cellular network. What we are seeing is it disconnec

problema con equipos PAN-500 en modo Activo-Pasivo

Tenemos el siguiente problema, nosotros hicimos una migración a la versión 5.0.8 en ambos equipos y no tuvimos ningun inconveniente, el problema viene hoy cuando queremos hacer modificaciones al equipo y nos muestra un error en la interface 1/6 la cu

How many can I make custom url category on Panorama?

I have recognized I can make maximum 50 custom category on PA.

then is it same on Panoram ?

I wonder how many can I make custom url category on Panorama.

Thanks.

Is it possible and OK to disable user cert caching?

After revoking a cert being for GP, the device is still able to connect. I found that it is cached somehow. So is it possible and OK to disable the caching of user certs for authentication?

> show system setting ssl-decrypt setting

vsys                

packet based attack

Hi,

Will Choosing all options cause a false positive ?(especially IP option boxes)

And how can we see these drops ?

Unable to See the Threat Logs for Packet Based Attack

Thanks

Cannot add zone to security rule from panorama

Hello there:

I'm new to palo alto through Panorama, so please excuse me if this is a silly issue. I created a template and a device group (without devices in it yet) and started to create everything else (addresses, groups, users, nats, sec policies,

Malware site and response page - problem

Hello

Some time ago I created url-filtering profile:

Today I found in wildfire report that someone try to download something from malware site, so I try to check is my configuration works as expected.

First of all I checked is it still a malware site:

ad