Monitor NXDOMAIN Unknown Answers (Failures)

Does anyone know if it is possible to monitor for NXDOMAIN Unknown Answers (Failures) with PanOS 5.0 ?

Would it be a custom signature/application that needs to be created?

PA500 says virus - virus total says no

We have a bunch of files that we created that we need to upload via ftp to a remote server through the PA.

The files trip the virus detector in the PA.  Here's a syslog entry with some identifying information changed:

2014-06-16T15:22:31+10:00 10.84.1

VM series promiscuous issue?

Hi,

Just messing about with a VM-100 and three other VM's on vSphere 5.5...All setup for layer 3.

Ubuntu1 <> VM100 <> Vyatta <> Ubuntu2

Three vSwitches, promiscuous mode on reject

Ubuntu1 to VM100 10.x.x.x/24 network

VM100 to Vyatta 172.16.x.x/24 network

Captive portal and Android cookies: How are cookies stored that are delivered from captive portal?

First, some background. We have captive portal configured and we have a "BYOD" wireless network. We have the cookie lifetime in Palo Alto set to one week.

For our Android users, it seems that once they get redirected to the captive portal and authenti

Global Protect Portal with Certificate Profile - client certificate required after upgrading to 6.0

Hi,

We are running Global Protect with pre-logon. The GP Portal needs to allow users to login from "clean" computers without machine certificates, and at the same time allow pre-logon user(and other users) to authenticate with machine certificate. Thi

HA deployment with IPsec tunnel

Hello Guys ,

I have two PaloAltos' deployed in HA ( active - passive mode ) and have an IPSec tunnel configured. I have noticed that when the primary PAN ( active ) fail-over to the Secondary PAN, the IPsec tunnel does come up and need to manually sta

About custom vulnerability signature

Hello,

My customer made vulnerability signature in FW. But FW doesn't detect this signature.

Customer Vulnerability Signature

context : http-req-message-body

pattern : eval\(gzinflate\(str_rot13\(base64_decode

I am searching this but I don't know.

So I nee

Check Point R77 URL policy migration

Hello,

I was trying to search for examples or good documentation for migrating check point URL policy to PAN. Does anyone have any suggestions?

One of the specific examples I'm having issues with: CP has an option to select Internet as a destination (

Question about Sub-interface in Virtual-System

Hi All,

Can we create two sub-interface in the one physical interface, and put them into two Virtual-System ?

PAN-OS 5.0.12 vs PAN-OS 6.0.2

Hello All,

  I wanted to ask the community and the support engineers about the recommendation for PAN-OS for a new installation.

Given PAN-OS 6.0.2 came out about a month ago, can anybody comment on the stability of this version?   Anybody upgraded

to i